# Spring Security

Spring Security is a framework that provides [authentication](features/authentication/index.html), [authorization](features/authorization/index.html), and [protection against common attacks](features/exploits/index.html).
With first class support for securing both [imperative](servlet/index.html) and [reactive](reactive/index.html) applications, it is the de-facto standard for securing Spring-based applications.

For a complete list of features, see the [Features](features/index.html) section of the reference.

## Getting Started

If you are ready to start securing an application see the Getting Started sections for [servlet](servlet/getting-started.html) and [reactive](reactive/getting-started.html). These sections will walk you through creating your first Spring Security applications.

If you want to understand how Spring Security works, you can refer to the [Architecture](servlet/architecture.html) section.

If you have any questions, there is a wonderful [community](community.html) that would love to help you!