O'Reilly logo

GlassFish Security by Masoud Kalali

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Estimating security risks: Auditing

Auditing is an integral part of security measures to track back the events and check the overall health of the system security. Using auditing we can estimate security risks and get a thorough understanding of possible points of intrusions and attacks in the system.

The GlassFish auditing system let administrators audit seven important security events which are included in the following table:

Action

Description

Authentication*

Any authentication attempt can be audited.

Web resource invocation*

Any attempt to access a web resource can be audited.

EJB method invocation*

Any attempt to invoke an EJB method can be audited.

Web service invocation

Any attempt to invoke a web service can be audited.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required