Leads4pass > GIAC > GIAC Certifications > GSSP-JAVA > GSSP-JAVA Online Practice Questions and Answers

GSSP-JAVA Online Practice Questions and Answers

Questions 4

Mark works as a Programmer for InfoTech Inc. He wants to define the security constraint for an application that allows users with the role of Manager access to the POST method of all resources with the URL pattern /acme/Manager/*, and also allow users with the role of Editor access to the POST method of all resources with the URL pattern /acme/Editor/*. Which of the following code will be used to declare the security element?

A. Manager/acme/Manager/*GETPOSTManagerEditor/acme/Editor/*GETPOSTEditor

B. Manager/acme/Manager/*GETPOSTManagerGETPOSTEditor

C. Manager/acme/Manager/*GETPOSTManagerEditor

D. Manager/acme/Manager/*GETPOSTEditor/acme/Editor/*GETPOSTManager

Buy Now
Questions 5

Which of the following methods must be implemented by each subclass of the Permission class to compare permissions?

A. hashcode

B. implies

C. newPermissionCollection

D. equals

Buy Now
Questions 6

Which of the following code is used to create an object of security manager?

A. SecurityManager appsm = getClassContext();

B. SecurityManager appsm = System.getSecurityDescriptor();

C. SecurityManager appsm = System.getSecurityManager();

D. SecurityManager appsm = getSecurityContext();

Buy Now
Questions 7

Which of the following statements about the form-based authentication are true? Each correct answer represents a complete solution. Choose two.

A. It provides a weaker security check than the HTTP Digest and HTTPS Client authentications.

B. It requires a hidden field that supplies the login-constraint used by the application.

C. It requires that the action of the login form must be j_security_check.

D. It transmits username and password over the network in the form of Base64 encoding.

Buy Now
Questions 8

You work as a developer for PassGuide Inc. You have implemented a session bean with a method doPrint (), which behaves differently depending on the caller's security role. Only MANAGER in the security roles "ADMIN" and "MANAGER" are allowed to call the method. Which of the following actions are appropriate to accomplish if there is no security-related metadata in the deployment descriptor? Each correct answer represents a complete solution. Choose all that apply.

A. If EJBContext.getCallerPrincipal returns role "ADMIN", implement the behavior for MANAGER in role ADMIN.

B. If EJBContext.isCallerInRole("ADMIN") returns true, implement the behavior defined for MANAGER in role "ADMIN".

C. Annotate method doPrint() with @RolesAllowed({"ADMIN","MANAGER"}).

D. Annotate method doPrint() with @PermitAll.

Buy Now
Questions 9

Mark works as a Software Developer for ZenTech Inc. He writes the following code.

1.

public class Ques0352 {

2.

public static void main(String[] args) {

3.

String s1="JavaObject";

4.

String s1="ObjectJava";

5.

String s2="ObjectJava";

6.

if(s2.equals(s1))

7.

{ System.out.println("Equal"); }

8.

else

9.

{ System.out.println("Unequal"); }

10.

}

11.

}

Which of the following will happen to the code when he attempts to compile and run it?

A. It will compile successfully and Unequal will be displayed as output.

B. It will give a compile-time error at line 3.

C. It will compile successfully and Equal will be displayed as output.

D. It will give a compile-time error at line 4.

Buy Now
Questions 10

Which of the following CLDC connector modes is used only for data input over a connection?

A. READ_WRITE

B. READ

C. WRITE

Buy Now
Questions 11

Which of the following classes of java.util.logging prints a brief summary of the LogRecord in a human readable format?

A. XMLFormatter

B. SimpleFormatter

C. StreamHandler

D. MemoryHandler

Buy Now
Questions 12

Identify whether the given statement is true or false. "When a Java program starts up, one thread begins running immediately."

A. True

B. False

Buy Now
Questions 13

You work as a Software Developer for NewTech Inc. You write a bean class using Enterprise JavaBeans

3.0. The class uses the @DeclareRoles ("ADMIN, HR, DBA, USER") annotation to declare the security roles. The class contains a method named showResult(). You want to ensure that the ADMIN role is granted privilege to the showResult() method. Moreover, if a role that is not allowed to access the method tries to call the method, an error message must be shown. Assuming that there is no security-related element in the deployment descriptor, which of the following will you use to accomplish the task? Each correct answer represents a part of the solution. Choose two.

A. The isCallerInRole() method

B. The getCallerPrincipal() method

C. The @RolesAllowed("ADMIN") annotation

D. The @PermitAll annotation

Buy Now
Exam Code: GSSP-JAVA
Exam Name: GIAC Secure Software Programmer - Java
Last Update: Jul 03, 2026
Questions: 275
10%OFF Coupon Code: SAVE10

PDF (Q&A)

$49.99

VCE

$55.99

PDF + VCE

$65.99