This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Summit 2011 Working Sessions/Session027/Deliverable 2

From OWASP
Revision as of 19:23, 25 January 2011 by Chris Schmidt (talk | contribs)

Jump to: navigation, search

Deliverable 2

An XSS-Proofing Guideline for UI framework developers on how to ensure proper contextual context encoding for browsers. The goal should be XSS is IMPOSSIBLE in their application.

  1. Create a new set of Codecs to address additional popular encoding contexts
    1. Database Codecs
      1. Sybase
      2. Postgres
    2. Client Side
      1. Flash
      2. Applet
      3. JavaFX
      4. ECMA
    3. Data-Grid and DA
      1. Gigaspaces
      2. Hibernate Query Language
      3. SparQL
Retrieved from "https://wiki.owasp.org/index.php?title=Summit_2011_Working_Sessions/Session027/Deliverable_2&oldid=101984"