This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes Web Component Certification (SCWCD/OCPJWCD) and the fly likes Q65 HFSJ mock exam Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Certification » Web Component Certification (SCWCD/OCPJWCD)
Bookmark "Q65 HFSJ mock exam" Watch "Q65 HFSJ mock exam" New topic

Q65 HFSJ mock exam

Renu Radhika
Ranch Hand

Joined: Oct 21, 2005
Posts: 243
which concepts are common to all 4 authentication mechanism supported by j2EE compliant container.I got the answers.But my doubt is one of the options given is target server authentication what does that mean?
Renu Radhika
Ranch Hand

Joined: Oct 21, 2005
Posts: 243
Can anyone please help me in this.
Christophe Verré

Joined: Nov 24, 2005
Posts: 14687

The spec gives you an hint :
Basic Authentication is not a secure authentication protocol. User passwords are sent in simple base64 encoding, and the target server is not authenticated. Additional protection can alleviate some of these concerns: a secure transport mechanism (HTTPS), or security at the network level (such as the IPSEC protocol or VPN strategies) is applied in some deployment scenarios.
VPN can uses authentication before VPN connection, where servers are also authenticated.

[My Blog]
All roads lead to JavaRanch
I agree. Here's the link:
subject: Q65 HFSJ mock exam
Similar Threads
servlet security
Security frameworks for application frameworks
Security Maintenance
ladp authentication
How is Authentication done in projects?