Question 86 of 519
Java I/O API and Securing ApplicationseasyMultiple ChoiceObjective-mapped

1Z0-829 Security Manager Deprecation Practice Question

This 1Z0-829 practice question tests your understanding of java i/o api and securing applications. This is a configuration task: choose the command set that satisfies every stated requirement. Small differences — like 'secret' vs 'password' or 'transport input ssh' vs 'all' — change whether the answer is correct. A key principle to apply: security Manager Deprecation. Once you have made your selection, read the full explanation to reinforce the concept and understand why each distractor is designed to mislead on exam day.

Which is the best practice for securing a Java application that reads sensitive configuration files?

Clue words in this question

Noticing these words before you look at the options changes how you read each choice.

  • Clue: "best"

    Why it matters: Signals that multiple options may be partially correct. Choose the option that most directly solves the exact problem described, not the one that sounds most complete.

Answer choices

Why each option matters

Answer the question above first, then reveal the full breakdown to understand why each option is right or wrong.

Correct answer & explanation

Restrict access to the file using operating system permissions.

Option A is correct because restricting access to sensitive files using operating system permissions is a fundamental security practice that applies regardless of the Java version. In Java 17, the Security Manager is deprecated for removal (JEP 411), so relying on a Java security policy file (Option B) is no longer considered a best practice. OS-level permissions provide a robust, platform-native access control that does not depend on deprecated features. Options C and D are insufficient: making a file read-only does not prevent unauthorized access, and storing credentials in source code is highly insecure.

Key principle: Security Manager Deprecation

Answer analysis

Option-by-option breakdown

For each option: why learners choose it and why it is or isn't the right answer here.

  • Restrict access to the file using operating system permissions.

    Why this is correct

    Correct. Restricting access via OS permissions is a standard, platform-independent best practice that does not rely on deprecated Java features.

    Clue confirmation

    The clue word "best" in the question point toward this answer.

    Related concept

    Security Manager Deprecation

  • Define a Java security policy file with FilePermission for the configuration file.

    Why it's wrong here

    Incorrect. In Java 17, the Security Manager is deprecated for removal, so using a Java policy file is no longer a best practice.

  • Make the file read-only at the OS level.

    Why it's wrong here

    Incorrect. Making a file read-only does not prevent unauthorized users from reading it; proper access control requires restricting who can read the file.

  • Store credentials in the source code and use encryption.

    Why it's wrong here

    Incorrect. Storing credentials in source code is a major security risk, even with encryption, as encryption keys are often stored alongside the code.

Common exam traps

Common exam trap: answer the scenario, not the keyword

Candidates may think that using Java's Security Manager with a policy file is the best practice, but in Java 17 it is deprecated. The correct modern approach is to rely on OS-level permissions.

Detailed technical explanation

How to think about this question

The Java security manager uses a stack inspection algorithm to check each calling method's protection domain against the granted permissions in the policy file. FilePermission is evaluated with actions like 'read', 'write', 'delete', and 'execute', and the policy file is typically loaded at JVM startup via the `-Djava.security.policy` flag. In real-world scenarios, this is critical for applet containers or enterprise applications where the JVM must enforce access controls even when the OS user has broad privileges.

KKey Concepts to Remember

  • Security Manager Deprecation
  • Operating System Permissions

TExam Day Tips

  • Watch for words such as best, first, most likely and least administrative effort.
  • Review why wrong options are wrong, not only why the correct option is correct.

Key takeaway

Security Manager Deprecation

Real-world example

How this comes up in practice

A practitioner preparing for the 1Z0-829 exam encounters this exact type of scenario on the job. The correct answer here is not the most general option — it is the best answer for the specific constraint described. Security Manager Deprecation Real exam questions reward reading the full scenario before eliminating options, because the constraint defines which answer fits.

What to study next

Got this wrong? Here's your next step.

Review security Manager Deprecation, then practise related 1Z0-829 questions on the same topic to reinforce the concept.

Related practice questions

Related 1Z0-829 practice-question pages

Use these pages to review the topic behind this question. This is how one missed question becomes focused revision.

Practice this exam

Start a free 1Z0-829 practice session

Short sessions build daily habit. Longer sessions build exam-day stamina. Try a timed session to simulate real conditions.

FAQ

Questions learners often ask

What does this 1Z0-829 question test?

Java I/O API and Securing Applications — This question tests Java I/O API and Securing Applications — Security Manager Deprecation.

What is the correct answer to this question?

The correct answer is: Restrict access to the file using operating system permissions. — Option A is correct because restricting access to sensitive files using operating system permissions is a fundamental security practice that applies regardless of the Java version. In Java 17, the Security Manager is deprecated for removal (JEP 411), so relying on a Java security policy file (Option B) is no longer considered a best practice. OS-level permissions provide a robust, platform-native access control that does not depend on deprecated features. Options C and D are insufficient: making a file read-only does not prevent unauthorized access, and storing credentials in source code is highly insecure.

What should I do if I get this 1Z0-829 question wrong?

Review security Manager Deprecation, then practise related 1Z0-829 questions on the same topic to reinforce the concept.

Are there clue words in this question I should notice?

Yes — watch for: "best". Signals that multiple options may be partially correct. Choose the option that most directly solves the exact problem described, not the one that sounds most complete.

What is the key concept behind this question?

Security Manager Deprecation

About these practice questions

Courseiva creates original exam-style practice questions with explanations and wrong-answer analysis. It does not publish real exam questions, exam dumps, or protected exam content. Learn why practice questions differ from exam dumps →

How Courseiva writes practice questions · Editorial policy

Keep practising

More 1Z0-829 practice questions

Last reviewed: Jun 25, 2026

Question Discussion

Share a tip, memory trick, or ask about the reasoning behind this question. Do not post real exam questions, leaked content, braindumps, or copyrighted exam material. Comments are moderated and may be removed without notice.

Loading comments…

Sign in to join the discussion.

This 1Z0-829 practice question is part of Courseiva's free Oracle certification practice question bank. Courseiva provides original exam-style practice questions with explanations, topic-based practice, mock exams, readiness tracking, and study analytics to help learners prepare for the 1Z0-829 exam.