S90.18A Exam Information and Guideline
Fundamental SOA Security
Below are complete topics detail with latest syllabus and course outline, that will help you good knowledge about exam objectives and topics that you have to prepare. These contents are covered in questions and answers pool of exam.
Exam: S90.18A Fundamental SOA Security
Exam Details:
- Number of Questions: The exam consists of approximately 40 multiple-choice questions.
- Time: Candidates are given 90 minutes to complete the exam.
Course Outline:
The S90.18A Fundamental SOA Security exam focuses on assessing professionals' fundamental knowledge and understanding of security considerations in Service-Oriented Architecture (SOA) environments. The course covers the following topics:
1. Introduction to SOA Security
- Overview of SOA and its security challenges
- Fundamentals of information security
- Security objectives in SOA environments
- Security governance and risk management
2. SOA Security Concepts and Principles
- Authentication and authorization in SOA
- Confidentiality and integrity of data in transit and at rest
- Non-repudiation and data integrity mechanisms
- Auditing, logging, and monitoring in SOA
3. SOA Security Technologies and Mechanisms
- Secure communication protocols and standards
- Web services security standards (WS-Security, SAML, etc.)
- Security token services and identity federation
- Secure coding practices and vulnerability management
4. Securing SOA Infrastructure and Services
- Security considerations for service-oriented infrastructure
- Securing service endpoints and message exchanges
- Handling security exceptions and error conditions
- Secure deployment and configuration of SOA components
Exam Objectives:
The exam aims to assess candidates' understanding and proficiency in the following areas:
1. Fundamental concepts and principles of SOA security.
2. Knowledge of security technologies and mechanisms in SOA environments.
3. Understanding of securing SOA infrastructure and services.
4. Familiarity with security governance and risk management in SOA.
Exam Syllabus:
The exam syllabus covers the following topics:
- Introduction to SOA Security
- Overview of SOA and its security challenges
- Fundamentals of information security
- Security objectives in SOA environments
- Security governance and risk management
- SOA Security Concepts and Principles
- Authentication and authorization in SOA
- Confidentiality and integrity of data in transit and at rest
- Non-repudiation and data integrity mechanisms
- Auditing, logging, and monitoring in SOA
- SOA Security Technologies and Mechanisms
- Secure communication protocols and standards
- Web services security standards (WS-Security, SAML, etc.)
- Security token services and identity federation
- Secure coding practices and vulnerability management
- Securing SOA Infrastructure and Services
- Security considerations for service-oriented infrastructure
- Securing service endpoints and message exchanges
- Handling security exceptions and error conditions
- Secure deployment and configuration of SOA components