This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Summit 2011 Working Sessions/Session027/Deliverable 2"

From OWASP
Jump to: navigation, search
 
Line 1: Line 1:
 
== '''Deliverable 2''' ==
 
== '''Deliverable 2''' ==
  
'''An XSS-Proofing Guideline for UI framework developers on how to ensure proper contextual context encoding for browsers. The goal should be XSS is IMPOSSIBLE in their application.'''  
+
'''New drop in set of codecs for the ESAPI Encoder to use for additional contexts'''  
  
 
# Create a new set of Codecs to address additional popular encoding contexts
 
# Create a new set of Codecs to address additional popular encoding contexts

Latest revision as of 19:24, 25 January 2011

Deliverable 2

New drop in set of codecs for the ESAPI Encoder to use for additional contexts

  1. Create a new set of Codecs to address additional popular encoding contexts
    1. Database Codecs
      1. Sybase
      2. Postgres
    2. Client Side
      1. Flash
      2. Applet
      3. JavaFX
      4. ECMA
    3. Data-Grid and DA
      1. Gigaspaces
      2. Hibernate Query Language
      3. SparQL
Retrieved from "https://wiki.owasp.org/index.php?title=Summit_2011_Working_Sessions/Session027/Deliverable_2&oldid=101985"