Parameter validation

From Wikipedia, the free encyclopedia

In computer software, the term parameter validation[1][2] is the automated processing, in a module, to validate the spelling or accuracy of parameters passed to that module. The term has been in common use for over 30 years.[1] Specific best practices have been developed, for decades, to improve the handling of such parameters.[1][2][3]

Parameter validation can be used to defend against cross-site scripting attacks.[4]

See also[edit]


  1. ^ a b c "Parameter validation for software reliability", G.B. Alleman, 1978 (see below: References).
  2. ^ a b "Parameter Validation for Floats",, 2007, webpage: MSDN-862.
  3. ^ "Feedback: Attribute-based method parameter validation and error handling", 2007, webpage: VStudio-327.
  4. ^ "The Top 10 Web Application security vulnerabilities starting with XSS |". Archived from the original on 2012-11-16. Retrieved 2013-04-18.


  • "Parameter validation for software reliability", G.B. Alleman, 1978, webpage: ACM-517: paper presents a method for increasing software reliability through parameter validation.