CompTIA Security+ (SY0-701) — Question 121

An organization recently updated its security policy to include the following statement:
Regular expressions are included in source code to remove special characters such as $, |, ;. &, `, and ? from variables set by forms in a web application.
Which of the following best explains the security technique the organization adopted by making this addition to the policy?

Answer options

• A. Identify embedded keys
• B. Code debugging
• C. Input validation
• D. Static code analysis

Correct answer: C

Explanation

The correct answer is C, as input validation is the process of ensuring that the data entered by users meets certain criteria and is safe for processing. The other options do not directly address the prevention of potentially harmful data from being processed, as they focus on different aspects of code management or analysis.