return channelStats.values().stream()
            .mapToLong(ChannelStatistics::getThroughput)
            .sum();
    }
}
```

## 9. Security Considerations

### 9.1 Channel Binding Security
```java
public class SecureChannelBinding {
    private final byte[] sessionKey;
    

With cluster-wide seccomp defaults, the kubelet uses the `RuntimeDefault` seccomp profile by default, rather than than `Unconfined`. This allows enhancing the default cluster wide workload security of the Kubernetes deployment. Security administrators will now sleep better knowing there is some security by default for the workloads.

            throw new CommandExecutionException("Command array is null or empty. At least one command must be provided.");
        }

        // Log command template with masked password for security
        if (logger.isDebugEnabled()) {
            final String commandStr = stream(commands).get(stream -> stream.map(s -> {
                if ("$PASSWORD".equals(s)) {
                    return "***MASKED***";

        return new JakartaServletDiskFileUpload(fileItemFactory) {
            @Override
            public byte[] getBoundary(final String contentType) { // for security
                final byte[] boundary = super.getBoundary(contentType);
                checkBoundarySize(contentType, boundary);
                return boundary;
            }
        };
    }

import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.net.InetAddress;
import java.net.NetworkInterface;
import java.net.SocketException;
import java.nio.ByteBuffer;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Comparator;
import java.util.Enumeration;
import java.util.List;
import java.util.Map;

        assertEquals(3000, config.getNetbiosRetryTimeout());
        assertEquals(576, config.getNetbiosSndBufSize());
        assertNull(config.getLmHostsFileName());
    }

    @Test
    @DisplayName("Test security configuration getters")
    void testSecurityConfigurationGetters() {
        assertFalse(config.isSigningEnabled());
        assertFalse(config.isSigningEnforced());
        assertTrue(config.isIpcSigningEnforced());

            mockThemeHelper.install(artifact);
            assertTrue(true); // Should filter out dangerous paths
        } catch (Exception e) {
            // May fail due to ResourceUtil dependencies or security measures
            assertTrue(true);
        }
    }

    @Test
    public void test_install_directoryEntries() throws IOException {
        // Create a zip with directory entries

    /**
     * Returns the user's domain name.
     * @return the domain name
     */
    public String getDomainName() {
        return this.domainName;
    }

    /**
     * Returns the user's Security Identifier (SID).
     * @return the user SID
     */
    public SID getUserSid() {
        return this.userSid;
    }

    /**
     * Returns the user's primary group SID.

import static org.mockito.Mockito.times;
import static org.mockito.Mockito.verify;
import static org.mockito.Mockito.when;

import java.net.InetAddress;
import java.net.UnknownHostException;
import java.security.SecureRandom;
import java.util.Arrays;
import java.util.List;
import java.util.TimeZone;

import org.junit.jupiter.api.BeforeEach;
import org.junit.jupiter.api.DisplayName;
import org.junit.jupiter.api.Test;

# 額外的模型 { #extra-models }

延續前一個範例，通常會有不只一個彼此相關的模型。

對使用者模型尤其如此，因為：

* 「輸入模型」需要能包含密碼。
* 「輸出模型」不應包含密碼。
* 「資料庫模型」通常需要儲存雜湊後的密碼。

/// danger

切勿儲存使用者的明文密碼。務必只儲存可供驗證的「安全雜湊」。

若你還不清楚，稍後會在[安全性章節](security/simple-oauth2.md#password-hashing)學到什麼是「密碼雜湊」。

///

## 多個模型 { #multiple-models }

以下是模型大致長相、與其密碼欄位以及它們被使用的位置：

{* ../../docs_src/extra_models/tutorial001_py310.py hl[7,9,14,20,22,27:28,31:33,38:39] *}