Difference between revisions of "Codereview-Input Validation"

From OWASP
Jump to: navigation, search
Line 6: Line 6:
 
===Data Validation===
 
===Data Validation===
 
===Business Validation===
 
===Business Validation===
===canonicalization===
+
===Canonicalization===

Revision as of 05:36, 4 July 2008

OWASP Code Review Guide Table of Contents

Contents

Introduction

Inout validation is one of the most effective application security technical controls. It can mitigate numerous vulnerabilities (but not all). Input validation is more than checking form field values. The chapter of transactional analysis talks about this.

Data Validation

Business Validation

Canonicalization