ASVS Requirement 2.2.2

• Level: 1
• Chapter: V2 Validation and Business Logic
• Section: V2.2 Input Validation
• Source: 0x11-V2-Validation-and-Business-Logic.md

Description

Verify that the application is designed to enforce input validation at a trusted service layer. While client-side validation improves usability and should be encouraged, it must not be relied upon as a security control.