org.owasp.esapi
Class IntrusionDetector
java.lang.Object
org.owasp.esapi.IntrusionDetector
- All Implemented Interfaces:
- IIntrusionDetector
- public class IntrusionDetector
- extends java.lang.Object
- implements IIntrusionDetector
Reference implementation of the IIntrusionDetector interface. This
implementation monitors EnterpriseSecurityExceptions to see if any user
exceeds a configurable threshold in a configurable time period. For example,
it can monitor to see if a user exceeds 10 input validation issues in a 1
minute period. Or if there are more than 3 authentication problems in a 10
second period. More complex implementations are certainly possible, such as
one that establishes a baseline of expected behavior, and then detects
deviations from that baseline.
- Since:
- June 1, 2007
- Author:
- Jeff Williams (jeff.williams .at. aspectsecurity.com) Aspect Security
- See Also:
IIntrusionDetector
|
Method Summary |
void |
addEvent(java.lang.String eventName)
Adds the event to the IntrusionDetector. |
void |
addException(java.lang.Exception e)
This implementation uses an exception store in each User object to track
exceptions. |
| Methods inherited from class java.lang.Object |
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
IntrusionDetector
public IntrusionDetector()
addException
public void addException(java.lang.Exception e)
- This implementation uses an exception store in each User object to track
exceptions.
- Specified by:
addException in interface IIntrusionDetector
- Parameters:
e - the e
- Throws:
IntrusionException - the intrusion exception- See Also:
org.owasp.esapi.interfaces.IIntrusionDetector#addException(org.owasp.esapi.errors.EnterpriseSecurityException)
addEvent
public void addEvent(java.lang.String eventName)
throws IntrusionException
- Adds the event to the IntrusionDetector.
- Specified by:
addEvent in interface IIntrusionDetector
- Parameters:
eventName - the event
- Throws:
IntrusionException - the intrusion exception