Exam CCOA Topic 4 Question 94 Discussion

Actual exam question for ISACA's CCOA exam
Question #: 94
Topic #: 4
Which of the following is a security feature provided by the WS-Security extension in the Simple Object Access Protocol (SOAP)?

Suggested Answer: B Vote an answer

TheWS-Securityextension inSimple Object Access Protocol (SOAP)provides security features at the message levelrather than thetransport level. One of its primary features ismessage confidentiality.
* Message Confidentiality:Achieved by encrypting SOAP messages using XML Encryption. This ensures that even if a message is intercepted, its content remains unreadable.
* Additional Features:Also provides message integrity (using digital signatures) and authentication.
* Use Case:Suitable for scenarios where messages pass through multiple intermediaries, as security is preserved across hops.
Incorrect Options:
* A. Transport Layer Security (TLS):Secures the transport layer, not the SOAP message itself.
* C. Malware protection:Not related to WS-Security.
* D. Session management:SOAP itself is stateless and does not handle session management.
Exact Extract from CCOA Official Review Manual, 1st Edition:
Refer to Chapter 7, Section "Web Services Security," Subsection "WS-Security in SOAP" - WS-Security provides message-level security, including confidentiality and integrity.

by Edgar at Jun 26, 2026, 02:36 AM

Limited Time Offer

15%

Off

Get Premium CCOA Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
0
0
0
10