Currently HDIV supports three state management strategies.
目前HDIV支持3种状态管理策略。
Editable Data Validation - HDIV analyzes all editable fields to remove cross-site scripting and SQL injection attacks.
可编辑数据验证——为了去除跨站点脚本和SQL注入攻击,HDIV分析所有的可编辑数据域。
In previous versions HDIV supported Struts 1.x and Struts 2.x, however this release now also supports Spring MVC 2.0 and JSTL.
在以前版本中,HDIV支持Struts 1 .x和struts 2 . x,而本次发布现在也支持SpringMVC 2.0和JSTL。
An HDIV web filter is then inserted into the application's web.xml, and validation is then automatically performed on all requests.
在应用的web . xml中插入一个HDIV web过滤器,这样将对每个请求自动执行验证。
Detailed attack Logging - HDIV logs information abut every attack it detects, providing information such as URL, username, IP address, and attack type.
详细的攻击日志——HDIV记录它检测到的每次攻击的信息,信息包括:url、用户名、IP地址和攻击类型。
Data Integrity - HDIV guarantees that any server-generated, read-only data (e.g. hidden fields) are not edited on the client to avoid parameter tampering attacks.
数据完整性——为了防止参数篡改,HDIV保证任何服务器产生的、只读数据(如隐藏域)不能被客户端修改。
Data Integrity - HDIV guarantees that any server-generated, read-only data (e.g. hidden fields) are not edited on the client to avoid parameter tampering attacks.
数据完整性——为了防止参数篡改,HDIV保证任何服务器产生的、只读数据(如隐藏域)不能被客户端修改。
应用推荐