Arcitura Education S90.20 Exam - Topic 1 Question 8 Discussion

Actual exam question for Arcitura Education's S90.20 exam

Question #: 8
Topic #: 1

Service A provides a data retrieval capability that can be used by a range of service consumers, including Service Consumer A, In order to retrieve the necessary data. Service Consumer A first sends a request message to Service A (1). Service A then exchanges request and response messages with Service B (2, 3). Service C (4, 5), and Service D (6. 7). After receiving all three response messages from Services B .C .and D, Service A assembles the collected data into a response message that it returns to Service Consumer A (8). The Service A data retrieval capability has been suffering from poor performance, which has reduced its usefulness to Service Consumer A .Upon studying the service composition architecture, it is determined that the performance problem can be partially attributed to redundant validation by service contracts for compliance to security policies. Services B and C have service contracts that contain the same two security policies. And, Service D has a service contract that contains a security policy that is also part of Service A's service contract. What changes can be made to the service contracts in order to improve the performance of the service composition while preserving the security policy compliance requirements?

AApply the Policy Centralization pattern in order to establish a single security policy for the entire service composition. The-redundant policies residing in the service contracts of Services A .B, C and D need to be removed and grouped together into one master policy definition enforced by Service A .This way, redundant policy validation is eliminated, thereby improving runtime performance.

BApply the Policy Centralization pattern in order to establish two centralized policy definitions and ensure that policy enforcement logic is correspondingly centralized. The first policy definition includes the redundant security policies from Services A and D and the second policy definition contains the redundant security policies from Services B and C .

CAll policies are analyzed for similarities, which are then extracted and, by applying the Policy Centralization pattern, combined into a single policy definition. This 'meta-policy' is then positioned to perform validation of the response message generated by Service A, prior to receipt by Service Consumer A .If validation fails, an alternative error message is sent to Service Consumer A instead.

DApply the Standardized Service Contract principle in order to remove redundancy within service contracts by ensuring that all four service contracts comply with the same policy standards. This further requires the application of the Service Abstraction principle to guarantee that policy definitions are sufficiently streamlined for performance reasons.

Show Suggested Answer

Suggested Answer: B

by Maryann at May 03, 2022, 04:26 PM

Limited Time Offer

25%

5 months ago

Hmm, the question is asking about Google's recommended practices, so I'm thinking option C might be the way to go. Nesting the author fields could make queries faster.

upvoted 0 times

...