Performs encoding of input strings to provide protection against
Cross-Site Scripting (XSS) attacks and LDAP injection attacks in
various contexts.
Namespace: Microsoft.Security.Application
Assembly: AntiXssLibrary40 (in AntiXssLibrary40.dll) Version: 4.2.0.0
Syntax
C# |
---|
public static class Encoder |
Visual Basic |
---|
Public NotInheritable Class Encoder |
Visual C++ |
---|
public ref class Encoder abstract sealed |
Remarks
This encoding library uses the Principle of Inclusions,
sometimes referred to as "safe-listing" to provide protection
against injection attacks. With safe-listing protection,
algorithms look for valid inputs and automatically treat
everything outside that set as a potential attack. This library
can be used as a defense in depth approach with other mitigation
techniques. It is suitable for applications with high security
requirements.