O'Reilly logo

Spring Security 3 by Peter Mularien

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Reviewing the audit results

Let's return to our e-mail and see how the audit is progressing. Uh-oh, the results don't look good:

To: Star Developer

From: Super Visor

Subject: FW: Security Audit Results

Star,

Have a look at the results and come up with a plan to address these issues.

Super Visor

APPLICATION AUDIT RESULTS

This application exhibits the following insecure behavior:

  • Inadvertent privilege escalation due to lack of URL protection and general authentication
  • Inappropriate or non-existent use of authorization
  • Database credentials not secured and easily accessible
  • Personally identifiable or sensitive information is easily accessible or unencrypted
  • Insecure transport-level protection due to lack of SSL encryption ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required