Comment by matheusmoreira
6 years ago
Language-theoretic security was the first thing that came to mind when I read the title. Was pleasantly surprised to see it referenced at the end of the article.
The idea is to formally specify the structure of inputs and reject invalid data instead of trying to process it.
langsec is directly cited in the article :)
The citation of langsec is directly mentioned in the comment :)
That's what I get for not reading the whole comment :^)