#5 Practice Questions and Discussion for Exam 70-536

QUESTIONS Technology Focus: Improving the security of .NET Framework applications by using the NET Framework security features
1. You use the .NET Framework to develop a client-server application. The server part of the application runs on a computer running Microsoft Windows Server 2003. All client computers run Microsoft Windows XP Professional. You need to write code that performs authentication and establishes a secure connection between the server and the client. You must make sure that the Kerberos protocol is used for authentication.
You must also make sure that data is encrypted before it is transmitted over the network and decrypted when it reaches the destination. Which code segment should you use?

Option A: C# public void NetMethod(NetworkCredential credentials, Stream innerStream) {     NegotiateStream ns = new NegotiateStream(innerStream);     ns.AuthenticateAsServer(credentials, ProtectionLevel.EncryptAndSign,         TokenImpersonationLevel.Impersonation);     // Additional code } Visual Basic Public Sub NetMethod( _     ByVal credentials As NetworkCredential, _     ByVal innerStream As Stream)     Dim ns As NegotiateStream = New NegotiateStream(innerStream)     ns.AuthenticateAsServer(credentials, ProtectionLevel.EncryptAndSign, _     TokenImpersonationLevel.Impersonation)     ' Additional code End Sub

Option B: C# public void NetMethod(NetworkCredential credentials, Stream innerStream) {     NegotiateStream ns = new NegotiateStream(innerStream);     ns.AuthenticateAsServer(credentials, ProtectionLevel.Sign,         TokenImpersonationLevel.Impersonation);     // Additional code } Visual Basic Public Sub NetMethod( _     ByVal credentials As NetworkCredential, _     ByVal innerStream As Stream)     Dim ns As NegotiateStream = New NegotiateStream(innerStream)     ns.AuthenticateAsServer(credentials, ProtectionLevel.Sign, _     TokenImpersonationLevel.Impersonation)     ' Additional code End Sub

Option C: C# public void NetMethod(X509Certificate serverCertificate, Stream innerStream) {     SslStream ss = new SslStream(innerStream);     ss.AuthenticateAsServer(serverCertificate, true,         SslProtocols.Tls, true);     // Additional code } Visual Basic Public Sub NetMethod( _     ByVal serverCertificate As X509Certificate, _     ByVal innerStream As Stream)     Dim ss As SslStream = New SslStream(innerStream)     ss.AuthenticateAsServer(serverCertificate, True, _         SslProtocols.Tls, True)     ' Additional code End Sub

Option D: C# public void NetMethod(X509Certificate serverCertificate, Stream innerStream) {     SslStream ss = new SslStream(innerStream);     ss.AuthenticateAsServer(serverCertificate, true,         SslProtocols.Ssl3, true);     // Additional code } Visual Basic Public Sub NetMethod( _     ByVal serverCertificate As X509Certificate, _     ByVal innerStream As Stream)     Dim ss As SslStream = New SslStream(innerStream)     ss.AuthenticateAsServer(serverCertificate, True, _         SslProtocols.ssl3, True)     ' Additional code End Sub

---

2. You develop a .NET Framework application. This application is deployed throughout the company on all workstations. All workstations are networked and are part of a Microsoft Windows domain.
Your application requires certain permissions in order to run. As a domain administrator, you configure the enterprise policy to grant the required permissions to the application. This application may be part of more than one code group.
You must make sure that your application receives sufficient permissions to run at all times. You must override any policy changes made by end users that lower the permissions required by your application to run.What should you do?
A: Apply the Exclusive attribute to the application's code group on the enterprise policy level.
B: Apply the LevelFinal attribute to the application's code group on the user policy level.
C: Apply the LevelFinal attribute to the application's code group on the enterprise policy level.
D: Apply the Exclusive attribute to the application's code group on the user policy level.

---

3. You develop a .NET Framework application. The assembly is added to these four code groups at the Enterprise level policy:
* All Code code group with a permission set of Everything
* Known Code code group with a permission set of Local Intranet
* Unknown Code code group with a permission set of Internet
* Restricted Code code group with a permission set of Nothing
The assembly is not a member of any other code groups.When the assembly is executed, what permissions does the Common Language Runtime (CLR) assign to the assembly?
A: Internet
B: Everything
C: Local Intranet
D: Nothing