Presentations
Templates
Features
Teams
Pricing
Log in
Sign up

Log in
Sign up

Input Validation!

The first step to robust, quality code.

What?
Why?
How?

What is input?

Data inserted into a system for processing and / or storage.

from an external source
can be stored in a database
can affect the flow of a program

What are some sources of input?

What does it mean for input to be valid?

User input is a form of data

Data that flows through the app needs to be handled in ways the program is expecting.

What is technical validity?
Who decides what data is valid?
What influences these decisions?

Possible and Sensible

Ensures that it is possible for the program to do something with the data, and that it makes sense to accept this data from an input source.

Presence (e.g. a user email is required for sign up)
Range (e.g. age restrictions, bank balances)
Length (e.g. entering passwords)
Format (e.g. date formats)
Data Type (e.g. types of characters in passwords, age as integers)

What does validation not ensure?

(Correctness in business logic)

Why is validation important?

Reliability - So programs don't stop running when input is unexpected, and users are not given confusing errors
Accuracy - Define the conditions that user input is accepted by the program (required and optional fields)
Make sure user input can actually be used in functions
Prevent security breaches & loss of data through saving or using malformed data (combined with sanitisation - later)

xkcd - "Exploits of a Mom" https://xkcd.com/327/

Examples

Web applications are highly vulnerable to input validation errors.
- “!@#$%^&*()” on a vulnerable e-commerce site may cause performance issues, or “denial of service”, on a vulnerable system,
- Invalid passwords such as “pwd’” or “1=1— ” may result in unauthorised access.
A Norwegian woman mistyped her account number on an internet banking system. Instead of typing her 11-digit account number, she accidentally typed an extra digit, for a total of 12 numbers. The system discarded the extra digit, and transferred $100,000 to the (incorrect) account. A simple instruction informing her that she had typed too many digits would have helped avoid this expensive error.
- Olsen, Kai. “The $100,000 Keying error” IEEE Computer, August 2008
More: http://cis1.towson.edu/~cssecinj/modules/cs0/cs0-input-validation-python/

https://bootsnipp.com/snippets/67OaM

So how do you do it?

We'll start with this Python example

Solution: https://trinket.io/python/87e3aa192c

More examples and resources

Easy Python Docs
Sitepoint: Validate your input
OWASP (Open Web Application Security Project) Input Validation "Cheat Sheet"

Input Validation! The first step to robust, quality code.

Input Validation Intro

By Diana K. Lee

Made with Slides.com

Input Validation Intro

6 years ago
508

Diana K. Lee

diana.click
d1ana

More from Diana K. Lee

Coding in 30: Online

Diana K. Lee

942
Coding 101: Online

Diana K. Lee

1264
All About JS: An Introduction

Diana K. Lee

963
Coding 101

Diana K. Lee

1191

Tour

Presentations Trending decks Templates Features Pricing Slides for Teams Slides for Developers

Help

Forum Knowledge Base Developers Docs Leave Feedback Report an Issue

Company

News Changelog About Slides Security Partners

Resources

Make slides with AI Embed Google Maps Embed Google Forms Embed YouTube Convert PDF to Slides Convert PPT to Slides Convert Markdown to Slides

Terms • Privacy • © 2025 Slides, Inc.

BESbswyBESbswyBESbswyBESbswy