Contents
Concurrency, Visibility, and Memory
Chapter 2 Input Validation and Data Sanitization (IDS)
IDS00-J. Sanitize untrusted data passed across a trust boundary
IDS01-J. Normalize strings before validating them
IDS02-J. Canonicalize path names before validating them
IDS03-J. Do not log unsanitized user input
IDS04-J. Limit the size of files passed to ZipInputStream
Get The CERT® Oracle® Secure Coding Standard for Java™ now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.