WS Security - Is there a need to read the full WS Security book ....

In preparation for the exam, is it required to study all the chapters in Securing Web Services book. As such how much percentage of questions appear from the security point of view in the exam ?

At the moment, technologies, related with web service securing are emerging. All you need to know about security for SCDJWS exam is the transport level security (HHTPS, SSL, j2ee security for these) and be able to distinguish technologies mentioned in exam objectives (XML encryption, Xml digital signature, SAML, XACML, WS-Security)
I think you don�t need to know the API for message level security, but need to be able to identify which security aspect is addressed by certain technology (XML Signature - for data integrity, non-repudiation XML Encryption � for confidentiality, etc.)
These are all well covered in �Security� chapter of Suns� �Web Services� blueprint and in a short form are represented in Mickail Zaiking Study Guide for SCDJWS

... just a small correction - "Mikalai"

the direct links are -

http://java.boot.by/wsd-guide/ch08.html
http://java.boot.by/wsd-guide/ch08s02.html
http://java.boot.by/wsd-guide/ch08s03.html

HTH,
MZ

thanks for the reply.
In some of the other posts, there has been a mention of the book 'Securing Web Services with WS-Security : Demystifying WS-Security, WS-Policy, SAML, XML Signature, and XML Encryption' by Jothy Rosenberg, David Remy. Its been said that chapters 4 to 7 are mandatory.
Considering your reply, is it ok to skip this book?