239
15
Secure forMS And
Account regIStrAtIon
HTML forms are one of the primary methods by which a client sends data to the
server application. A foundational rule of security is that since the user source is
unknown, the input from HTML form fields cannot be trusted. Proper handling of
the data that comes through form fields is central to maintaining the security of the
server. e emphasis is on proper handling, which is based on input usage. ere is no
single method that makes data safe in all cases. is chapter focuses on many tech-
niques to properly handle form fields.
Secure User Registration and Login Process Overview
Before becoming an authorized user of the site, a user must successfully register an
account and login. is section covers a multi-st ...