FYI, I saw a paper this morning by Stephen de Vries describing "A Modular Approach to Data Validation in Web Applications". The paper claims that the benefits of their approach include:
"Implementing such a modular approach contributes to the application being loosely coupled and ensures that it can safely be extended and components reused, without incurring unnecessary development time to re-implement validation routines. " A full abstract and a link to the (PDF format) paper can be found here: http://www.net-security.org/article.php?id=915 Cheers, Ken van Wyk -- KRvW Associates, LLC http://www.KRvW.com
pgpwGM9WQEi8o.pgp
Description: PGP signature
_______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php