Flexible Secure Profile Controls - In ColdFusion 11, customers have the ability to turn Secure Profile off or on afterinstallation, whenever they’d like, which streamlines the lockdown process to prevent a variety of attacks.ģ.
ESAPI features provide developers more flexibility to update the security of existing applications and serve as a strong platform for new development.Ģ. ColdFusion 11 also contains more tools from OWASP’s Enterprise Security API library, or ESAPI, including the EncodeForXPath and EncodeForXMLAttribute features. ColdFusion 11 exposes AntiSamy through the new getSafeHTML() and is SafeHTML().
For example, features from the AntiSamy project have been included to help developers safely display controlled subsets of user supplied HTML/CSS. More OWASP Tools - New OWASP tools have been added to provide more integrated security features. Adobe has released ColdFusion 11, the latest version of its Web application technology that enables organizations to build and deploy web and mobile enterprise applications.Īlong with upgrading and improving many features in the product, Adobe has made several security enhancements to the popular web technology, and giving developers access to an extensive toolkit of security controls and other additional features.Īccording to Peleus Uhley, Lead Security Strategist at Adobe, notable security enhancements In ColdFusion 11 include:ġ.
0 kommentar(er)
