INPUT AND OUTPUT VALIDATION
First Claim
1. A computer-implemented method for input validation and output validation, the method comprising:
- receiving, at a service, a request message from a client over a network, wherein the service is located on a server;
providing a handler at the server;
checking the request message at the handler using a first method before sending the request message to the service; and
checking a response message at the handler using the first method before sending the response message to the client.
1 Assignment
0 Petitions
Accused Products
Abstract
The present description refers in particular to a computer-implemented method, a computer system, and a computer program product for input validation and output validation to prevent SQL injections. In one aspect, an embodiment of the invention involves a service (e.g., a web service operating on a server) receiving a request message from a client over a network. The server includes a handler for checking the request message according to a first method, prior to sending the request message to the service. In addition, the handler checks a response message (from the service) according to the first method, prior to sending the response message to the client.
40 Citations
20 Claims
-
1. A computer-implemented method for input validation and output validation, the method comprising:
-
receiving, at a service, a request message from a client over a network, wherein the service is located on a server; providing a handler at the server; checking the request message at the handler using a first method before sending the request message to the service; and checking a response message at the handler using the first method before sending the response message to the client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer system for input validation and output validation, the computer system comprising:
-
a server having a service and a handler, wherein the service is operable to receive a request message from a client over a network; and wherein the handler is operable to i) check the request message using a first method before sending the request message to the service, and ii) check a response message using the first method before sending the response message to the client. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer-readable medium having a computer program product embodied thereon, wherein the computer program product comprises computer-readable instructions, which, when executed by a server, causes the server to:
-
receive, at a service, a request message from a client over a network, wherein the service is located on a the server; provide a handler at the server; check the request message at the handler using a first method before sending the request message to the service; and check a response message at the handler using the first method before sending the response message to the client. - View Dependent Claims (18, 19, 20)
-
Specification