Java EE 7 Application Developer — Question 25

Which two capabilities are provided by the Java Authentication and Authorization Services (JAAS) API? (Choose two.)

Answer options

• A. protecting data from unauthorized viewing by using encryption
• B. verifying that a user is allowed to perform an action
• C. ensuring that data is not modified in transit
• D. verifying identity claims from users

Correct answer: B, D

Explanation

The correct answers are B and D because JAAS is specifically designed to manage user authentication and authorization, ensuring users are permitted to perform certain actions (B) and validating their identity claims (D). Options A and C relate to data security and integrity, which are not the primary functions of JAAS.