Hi guys,
I've been involved in various secure application efforts in the past
couple months and one idea that surfaced is securing database
interaction from the application that's accessing the database. So,
basically preventing parameters from being passed into the database
that are invalid or
A plug-in would certainly be my preferred implementation. I agree that
validation can take place in the service layer, but this suggestion
came up in a discussion of security in depth, i.e. the more checks
that are being done, the less likely a vulnerability will compromise
much of the system.
I'm kind of behind Brandon with regard to building something specific
either for security or validation. iBATIS is not a security
framework, nor a validation framework. However
I would be fully behind features that would make such things easier for
developers to implement. For example,
