Free Arcitura Education S90.19 Exam Dumps and S90.19 Exam Questions

Question No: 1

MultipleChoice

Architects responsible for a domain service inventory are being asked to make some of their services available to service consumers from outside the organization. However, they are reluctant to do so and consult you to help define a security architecture that will keep all of the existing services within the domain service inventory hidden within a private network. Which option best is a valid approach for fulfilling this requirement?

Options

AApply the Brokered Authentication pattern to position an authentication broker outside the private network that has been configured to access the internal services via a firewall. The authentication broker becomes the sole contact point for external service consumers.

BApply the Service Perimeter Guard pattern in order to position a perimeter service outside the private network that has been configured to access the internal services via a firewall. The perimeter service becomes the sole contact point for external service consumers.

CApply the Trusted Subsystem pattern in order to position a service outside the private network that authenticates each incoming request and then uses its own set of credentials to get access to internal services. This service becomes the sole contact point for external service consumers.

DNone of the above.

Question No: 2

MultipleChoice

The Service Perimeter Guard pattern is applied to position a perimeter service outside of the firewall. The firewall only permits the perimeter service to access services within a specific service inventory. Which option best statements describes a valid problem with this security architecture?

Options

AThe Trusted Subsystem pattern was not applied to the perimeter service.

BThe perimeter service needs to be located inside the firewall and the firewall needs to be configured so that only known service consumers have access to the service inventory.

CThe Service Perimeter Guard pattern cannot be applied to a service outside of a service inventory.

DThere is no need to introduce a new security mechanism. The existing SAML tokens can be used by services across the domain service inventories as long as the existing authentication brokers are configured to issue service inventory-specific assertions for SAML tokens from specific domain service inventories.

Question No: 3

MultipleChoice

Which of the following are types of security sessions?

Options

AAuthentication

BAuthorization

Casymmetric key agreement

Dsingle sign-on

Question No: 4

MultipleChoice

A malicious passive intermediary intercepts messages sent between two services. Which option best is the main security concern raised by this situation?

Options

AThe integrity of the message can be affected.

BThe confidentiality of the message can be affected.

CThe reliability of the message can be affected.

DThe availability of the message can be affected.

Free Arcitura Education S90.19 Exam Dumps May 2026