Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

GSSP-Java by GIAC - Page 1 | ExamCademy

Mode Selection

Sort:

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

Question 25

Page 1 of 9 • Questions 1-25 of 214

1 2 3 4 5

→

Know a question that should be here? Contribute to this exam

Which of the following elements are the subelements of the mime-mapping element in a deployment descriptor file?
Each correct answer represents a complete solution. Choose all that apply.

A exception-type
B error-code
C extension
D mime-type
E servlet-class

Which directory in JAR files is used to store package and extension configuration data?

A META-INF
B GAMMA-INF
C ZIP-INF
D TAR-INF

Which of the following are valid thread state transitions?
Each correct answer represents a complete solution. Choose all that apply.

A From running to ready.
B From ready to waiting.
C From running to waiting.
D From waiting to ready.
E From ready to running.
F From waiting to running.

In which of the following cases is the GET method used to retrieve information?
Each correct answer represents a complete solution. Choose all that apply.

A Using a hyperlink inside a Web page.
B Using a form with no method definition.
C Adding the request parameter to the URL.
D Requesting to retrieve a large amount of data.

Which of the following code is used to create an object of security manager?

A SecurityManager appsm = getClassContext();
B SecurityManager appsm = System.getSecurityDescriptor();
C SecurityManager appsm = System.getSecurityManager();
D SecurityManager appsm = getSecurityContext();

Which of the following methods returns a Cipher object that implements the specified transformation?

A getCallerIdentity()
B getObject()
C getHeader()
D getInstance()

Which of the following is a mandatory sub-element of the <web-resource-collection> element of the deployment descriptor?

A <web-resource-name>
B <description>
C <http-method>
D <url-pattern>

Which of the following statements are true?
Each correct answer represents a complete solution. Choose all that apply.

A StringBuffer is thread safe, but StringBuilder is not.
B The String class is final.
C StringBuilder offers faster performance than StringBuffer.
D The size of the String can be obtained using the length property.

The following JSP scriptlet is given.
<% response.setContentType("text/html; charset=ISO-8859-1"); %>
Which of the following directives is the equivalent directive for the scriptlet given above?

A <%@ include contentType="text/html; pageEncoding=ISO-8859-1" %>
B <%@ include contentType="text/html; charset=ISO-8859-1" %>
C <%@ page contentType="text/html; charset=ISO-8859-1" %>
D <%@ taglib contentType="text/html; pageEncoding=ISO-8859-1" %>

Given below are top-level class declarations. Which of these class declarations would not produce a compile-time error? abstract class P //1 private class Q //2 static class R //3 transient class S //4

A Line 3
B Line 1
C Line 2
D Line 4

Which of the following statements about the <auth-constraint> element are true?
Each correct answer represents a complete solution. Choose all that apply.

A It is an optional sub-element of the <security-constraint> element.
B It has <role-name> and <role-type> as its sub-elements.
C If the <auth-constraint> element is not present, all users can access the resource.
D If the <auth-constraint> element has no <role-name> sub-element, all users can access the resource.

Which of the following methods is used to authenticate the users, and if the user has not been authenticated, the method returns false?

A getCallerPrincipal()
B getRemoteUser()
C isUserInRole()
D getCallerIdentity()

Which of the following mechanisms is closely related to authorization?

A Sending data so that no one can alter it on the way.
B Allowing access to a particular resource.
C Verifying username and password.
D Sending secret data such as credit card information.

You work as a Programmer for InfoTech Inc. You develop two html pages named authenticate.jsp and error.jsp, which are deployed directly at the root of the Web application named Authentication. Which of the following deployment descriptor code declarations will be used to ensure that the error.jsp page will be displayed automatically if the client is not authenticated?

A <login-config><auth-method>FORM</auth-method><form-login-config><form-login-page>/authenticate.jsp</form-login-page><form-error-page>/error.jsp</form-error-page></form-login-config></login-config>
B <user-data-constraint><auth-method>FORM</auth-method><login-page>/authenticate.jsp</login-page><form-error-page>/error.jsp</form-error-page></user-data-constraint>
C <auth-constraint><auth-method>FORM</auth-method><login-page>/authenticate.jsp</login-page><form-error-page>/error.jsp</form-error-page></auth-constraint>
D <error-page><auth-method>FORM</auth-method><form-login-page>/authenticate.jsp</form-login-page><location>/error.jsp</location></error-page>

Which of the following are advantages of client-side JavaScript?
Each correct answer represents a complete solution. Choose two.

A It is fast.
B It provides graphical components.
C It is secure.
D It provides form-validation at client side.

You work as a Software Developer for NewTech Inc. You want to configure the deployment descriptor so as to specify the error pages used in the FORM based authentication. Which of the following elements will you use to accomplish the task?

A The <realm-name> sub-element of the <login-config> element.
B The <role-link> sub-element of the <security-role-ref> element.
C The <method> sub-element of the <method-permission> element.
D The <form-login-config> sub-element of the <login-config> element.

Mark works as a Programmer for InfoTech Inc. He develops a class named Data that imports all the required packages. The class Data uses a method named PrintData(), which uses a method that checks whether the caller has a BeanUser security role. Which of the following code of the method PrintData() will satisfy the requirement?

A public void PrintData(){@DeclareRoles("BeanUser")@Resource SessionContext ctx;@RolesAllowed("BeanUser")Principal caller = ctx.getCallerPrincipal();if (ctx.getCallerIdentity("BeanUser")) {System.out.println("It is the correct user");}else{System.out.println("It is the incorrect user");}//more code}
B public void PrintData(){@DeclareRoles("BeanUser")@Resource SessionContext ctx;@RolesAllowed("BeanUser")Principal caller = ctx.getEJBHome();if (!isCallerInRole(ctx)) {System.out.println("It is the correct user");} else{System.out.println("It is the incorrect user");}//more code}
C public void PrintData(){@DeclareRoles("BeanUser")@Resource SessionContext ctx;@RolesAllowed("BeanUser")Principal caller = ctx.getCallerPrincipal();if (ctx.isCallerInRole("BeanUser")) {System.out.println("It is the correct user");}else{System.out.println("It is the incorrect user");}//more code}
D public void PrintData(){@DeclareRoles("BeanUser")@Resource SessionContext ctx;@RolesAllowed("BeanUser")Principal caller = ctx.getCallerPrincipal();if (ctx.getStatus("BeanUser")) {System.out.println("It is the correct user");} else{System.out.println("It is the incorrect user");}//more code}

Which of the following methods can be invoked from the ejbStore() method of an entity bean class?
Each correct answer represents a complete solution. Choose all that apply.

A getPrimaryKey()
B getUserTransaction()
C getRollbackOnly()
D isCallerInRole()
E getEJBObject()

Harry works as a Software Developer for SoftTech Inc. He has developed a Java application to perform various SQL statements such as INSERT, UPDATE, etc., against a database table named Employee. He has used the executeUpdate() method to perform various SQL queries and to know the exact affected rows in the database if any of the operations is performed against the database table.
Which of the following types of values is returned by this method?

A Double
B Integer
C Float
D String

DRAG DROP -
Drag and drop the appropriate authentication types from the given options to match their properties.

Question Image

GSSP-JavaPreview