A Simple and Practical Approach to Input Validation
Input validation is the process of ensuring the input into software conforms to what the internal logic of the software expects, though it is a relatively simple problem to solve it accounts for a high proportion of security vulnerabilities discovered. Not only is more education needed on the security risks of poor input validation but it is also important that input validation becomes part of the software development lifecycle.
This paper aims to offer a solution to these problems by outlining a simple and practical process, using XML and XML schema that developers can follow to implement input validation. Firstly the author will provide some background on XML schema, then a generic description of how the process can be achieved. The paper will conclude with practical examples of implementation and advantages and limitations of the process.