FYI, I saw a paper this morning by Stephen de Vries describing "A Modular Approach to Data Validation in Web Applications". The paper claims that the benefits of their approach include:
"Implementing such a modular approach contributes to the application
being
loosely coupled and ensures that it can safely be extended and
components
reused, without incurring unnecessary development time to re-implement
validation routines. "
A full abstract and a link to the (PDF format) paper can be found here:
http://www.net-security.org/article.php?id=915
Cheers,
Ken van Wyk
--
KRvW Associates, LLC
http://www.KRvW.com
pgpwGM9WQEi8o.pgp
Description: PGP signature
_______________________________________________ Secure Coding mailing list (SC-L) [email protected] List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php
