Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Arcitura Education Exam S90.18 Topic 3 Question 98 Discussion

Actual exam question for Arcitura Education's S90.18 exam
Question #: 98
Topic #: 3
[All S90.18 Questions]

A set of SAML tokens has been used as a result of the application of the Brokered Authentication pattern within a particular service inventory. Because SAML assertions normally contain a signature, the security specialist is confident that the integrity of messages will be maintained. What's wrong with this assumption?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Chantell at Sep 17, 2024, 02:07 AM

Limited Time Offer

25%

Off

Get Premium S90.18 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Corazon
4 hours ago
The security specialist needs to brush up on their SAML knowledge. The signature is important, but it's not the whole story. They should also check the issuer and validity period to ensure message integrity.
upvoted 0 times
...
Beckie
6 days ago
Haha, the security specialist must be new to this. SAML assertions without signatures? That's like having a birthday cake without candles!
upvoted 0 times
...
Alaine
8 days ago
I agree with Corrinne. The signature doesn't guarantee the integrity of the message, just the assertion. There could still be other parts of the message that are vulnerable.
upvoted 0 times
...
Chaya
11 days ago
I'm not sure, but I think the answer might be B. The issuer and validity period are also important for ensuring message integrity.
upvoted 0 times
...
Lashaun
13 days ago
I agree with Hildred. The signature in the SAML assertion doesn't protect the message itself, so the assumption is not entirely correct.
upvoted 0 times
...
Hildred
15 days ago
I think the answer is A. The signature in the SAML assertion only protects the integrity of the assertion itself.
upvoted 0 times
...
Corrinne
27 days ago
The security specialist's assumption is incorrect. The signature in the SAML assertion only protects the integrity of the assertion itself, not the entire message.
upvoted 0 times
Alayna
4 days ago
B) SAML assertions also contain the name of the issuer and the validity period, which are needed in addition to the signature to ensure message integrity.
upvoted 0 times
...
Alayna
14 days ago
A) The signature contained within the SAML assertion protects the integrity of the assertion, not of the message itself.
upvoted 0 times
...
...

Save Cancel