2010年7月23日星期五

Security

Cross Site Scripting
http://www.owasp.org/index.php/Top_10_2007-Cross_Site_Scripting

How To: Prevent Cross-Site Scripting in ASP.NET
http://msdn.microsoft.com/en-us/library/ff649310.aspx
The two most important countermeasures to prevent cross-site scripting attacks are to:
•Constrain input.
•Encode output.

Security Design Principles - Input/Data Validation
http://www.guidanceshare.com/wiki/Security_Design_Principles_-_Input/Data_Validation
发帖者 时间:

没有评论:

发表评论

订阅: 博文评论 (Atom)