Oracle Exam 1Z0-820 Topic 2 Question 71 Discussion

Actual exam question for Oracle's 1Z0-820 exam

Question #: 71
Topic #: 2

United States of America export laws include restrictions on cryptography.

Identify the two methods with which these restrictions are accommodated in the Oracle Solaris 11 Cryptographic Framework.

ACorporations must utilize signed X.509 v3 certificates.

BA third-party provider object must be signed with a certificate issued by Oracle.

CLoadable kernel software modules must register using the Cryptographic Framework SPI.

DThird-party providers must utilize X.509 v3 certificates signed by trusted Root Certification Authorities.

ESystems destined for embargoed countries utilize loadable kernel software modules that restrict encryption to 64 bit keys.

Show Suggested Answer

Suggested Answer: C

by Jade at Mar 02, 2023, 01:36 PM

Limited Time Offer

25%

Off

Get Premium 1Z0-820 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Dahlia

5 days ago

This is a tricky one. I'd go with C and D, but I'm curious to see if there's some obscure rule about signed X.509 certs that I'm missing.

upvoted 0 times

...

Dominic

13 days ago

Haha, imagine if they made you use a 64-bit key for systems going to embargoed countries. Might as well just use a paperclip for encryption!

upvoted 0 times

...

Taryn

18 days ago

Hmm, that makes sense too. Let's wait for more opinions before deciding.

upvoted 0 times

...

Alishia

19 days ago

I disagree, I believe the correct answer is C, as it involves registering with the Cryptographic Framework SPI.

upvoted 0 times

...

Graciela

20 days ago

I'm not sure about the specifics, but I know the U.S. has strict export laws on cryptography. Option E sounds a bit too specific, though.

upvoted 0 times

...

Nicholle

22 days ago

Options C and D seem to be the correct answer. The Cryptographic Framework requires kernel modules to register, and third-party providers must use trusted X.509 certs.

upvoted 0 times

...

Taryn

1 months ago

I think the answer is D, because it mentions trusted Root Certification Authorities.

upvoted 0 times

...