– What is Input?
– The Need for Input Validation
  – The Data/Control Channel Problem
    – SQL Injection, Cross Site Scripting, Directory Traversal
– Input Validation Techniques
  – Black Listing
  – White Listing
    – Data Type Conversion
    – Regular Expressions
    – XML Validation
    – Resource Access
– Mitigation Techniques
  – Output Encoding (Encoding Contexts and Encoding Controls)
  – Sandboxing
  – Integrity Checking
– Validation in ASP.NET Applications
  – Automatic Validation Services
    – Request Validation
    – ViewState Validation (+ Replay Protection)
    – Event Validation
      – Building Custom Controls with EventValidation Support
    – Header Checking
  – Form Validation
    – Manual Validation
    – Validation Controls
  – Building a Custom Validation Control