Set - 6

Question 11 :

What is security permission set ?

Answer :

The minimum set of security permissions that a J2EE product provider must provide for the execution of each component type.

Question 12 :

What is security policy domain ?

Answer :

A scope over which security policies are defined and enforced by a security administrator. A security policy domain has a collection of users (or principals), uses a well-defined authentication protocol or protocols for authenticating users (or principals), and may have groups to simplify setting of security policies.

Question 13 :

What is security role ?

Answer :

An abstract logical grouping of users that is defined by the application assembler. When an application is deployed, the roles are mapped to security identities, such as principals or groups, in the operational environment. In the J2EE server authentication service, a role is an abstract name for permission to access a particular set of resources. A role can be compared to a key that can open a lock. Many people might have a copy of the key; the lock doesn't care who you are, only that you have the right key.

Question 14 :

What is security technology domain ?

Answer :

A scope over which the same security mechanism is used to enforce a security policy. Multiple security policy domains can exist within a single technology domain.

Question 15 :

What is security view ?

Answer :

The set of security roles defined by the application assembler.