Login or register (free and only takes a few minutes) to participate in this question.
You will also have access to many other tools and opportunities designed for those who have language-related jobs (or are passionate about them). Participation is free and the site has a strict confidentiality policy.
11:37 Dec 9, 2010
English to Chinese translations [PRO] Tech/Engineering - IT (Information Technology) / Web application firewall
English term or phrase:encoded equivalents
Normalization : A favorite approach of attackers is to evade WAF detection by manipulating an exploit payload to appear as something harmless (for example by URL-encoding portions of the payload). In order to detect the attacks, the WAF needs to be able to normalize the requests in order to perform its analysis. A short list of normalizations is below – for a complete list please refer to Section 3.1 in The Web Application Security Consortium’s Web Application Firewall Evaluation Criteria.
Can the WAF normalize escaped or encoded characters (e.g. t, 01, %2C, xAA, uAABB)?
Self-referencing paths (i.e. use of /./ and ***encoded equivalents***)?
Mixed-cases and international character sets?