Answered step by step
Verified Expert Solution
Question
1 Approved Answer
1 . Tell about . NET Framework components . 2 . Tell about the Java Platform, Enterprise Edition ( J 2 EE ) . 3
Tell about NET Framework components Tell about the Java Platform, Enterprise Edition JEE What do you know about a serviceoriented architecture SOA Is it true? A web service allows for webbased communication to happenseamlessly using webbased standards, as in Simple Object Access Protocol SOAP HTTP Web Services Description Language WSDL Universal Description, Discovery and Integration UDDI and Extensible Markup Language XML What are roles of SOAP, HTTP Web Services Description Language WSDL Universal Description, Discovery and Integration UDDI and Extensible Markup Language XML What do you know about mobile code? Explain Javas security model concept What do you know about ActiveX Controls? What is the main security difference between Java applets and ActiveXcontrols?How do you understand Web Security?What are Specific Threats for Web Environments?Is it true? The most common types of vulnerabilities, threats, and complexities are covered in the following sections, which we will explore one at a time: Information gathering Administrative interfaces Authentication and access control Input validation Parameter validation Session managementExplain why?What kind of attacks can take place at many levels?What kind of different XSS vulnerabilities do you know? What do you know about Web Application Security Principles? What do you know about Information gathering? Is it true? Usually the first step in an attackers methodology, in which the information gathered may allow an attacker to infer additional information that can be used to compromise systemsWhat do you know about Server side includes SSI Is it true? An interpreted serverside scripting language used almost exclusively for web based communication. It is commonly used to include the contents of one or more files into a web page on a web server. Allows web developers to reuse content by inserting the same content into multiple web documents. What do you know about Clientside validation? Is it true? Input validation is done at the client before it is even sent back to the server to processWhat do you know about Crosssite scripting XSS Is it true? An attack where a vulnerability is found on a web site that allows an attacker to inject malicious code into a web applicationWhat do you know about Parameter validation? Is it true? The values that are being received by the application are validated to be within defined limits before the server application processes them within the systemWhat do you know about Web proxy? Is it true? A piece of software installed on a system that is designed to intercept all traffic between the local web browser and the web serverWhat do you know about Replay attack? Is it true? An attacker capturing the traffic from a legitimate session and replaying it with the goal of masquerading an authenticated user?
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started