EJB security is concerned with authentication, access control, and the Java™ 2 security policy mechanism.