This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Summit 2011 Working Sessions/Session027/Deliverable 3"

From OWASP
Jump to: navigation, search
 
Line 3: Line 3:
 
'''Implementation Guide for Framework Developers to integrate Output Encoding'''  
 
'''Implementation Guide for Framework Developers to integrate Output Encoding'''  
  
 +
= WS Notes =
  
== Introduction ==
+
What we need from framework developers
  
== About This Guide ==
+
Contextual Output Encoding that is easy for developers to use
 
+
• Text Box: Special Case
== What is Contextual Output Encoding ==
+
• Output Encoding must happen at the view layer
 
+
• Granular Output Tags
== Mapping Codecs and Encoders to Contexts ==
 
 
 
== Example: Apache Struts <bean:write> ==
 

Latest revision as of 01:28, 12 February 2011

Deliverable 3

Implementation Guide for Framework Developers to integrate Output Encoding

WS Notes

What we need from framework developers

• Contextual Output Encoding that is easy for developers to use • Text Box: Special Case • Output Encoding must happen at the view layer • Granular Output Tags

Retrieved from "https://wiki.owasp.org/index.php?title=Summit_2011_Working_Sessions/Session027/Deliverable_3&oldid=104943"