This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Difference between revisions of "Input Validation"

Jump to: navigation, search
(Redirecting to Category:Input Validation)
Line 1: Line 1:
#redirect [[:Category:Input Validation]]
Input validation refers to the process of validating all the input to an application before using it. Input validation is absolutely critical to application security, and most application risks involve tainted input at some level.
Many applications do not plan input validation, and leave it up to the individual developers. This is a recipe for disaster, as different developers will certainly all choose a different approach, and many will simply leave it out in the pursuit of more interesting development.
See [[Data_Validation]] for more.
==Examples ==
==Related Threats==
==Related Attacks==
==Related Vulnerabilities==
==Related Countermeasures==

Revision as of 08:33, 28 November 2006