Unicode Security: Software Vulnerability Testing Guide
© Chris Weber, Casaba Security, LLC
4.5 Canonicalization of non-shortest form UTF-8 ........................... Error! Bookmark not defined.
4.5.1 Guidance and Tooling ................................................................ Error! Bookmark not defined.
4.5.2 Tools .................................................................................................. Error! Bookmark not defined.
4.6 Over consumption of ill-formed byte sequences (or code units) ......... Error! Bookmark not
defined.
4.6.1 Well-formed and ill-formed byte sequences .................... Error! Bookmark not defined.
4.6.2 Table 3-7. Well-Formed UTF-8 Byte Sequences ............. Error! Bookmark not defined.
4.6.3 Handling ill-formed byte sequences .................................... Error! Bookmark not defined.
4.6.4 Guidance and Tooling ................................................................ Error! Bookmark not defined.
4.6.5 Tools .................................................................................................. Error! Bookmark not defined.
4.7 Handling the Unexpected ................................................................... Error! Bookmark not defined.
4.7.1 Unexpected inputs....................................................................... Error! Bookmark not defined.
4.7.2 Character Substitution .............................................................. Error! Bookmark not defined.
4.7.3 Character Deletion ...................................................................... Error! Bookmark not defined.
4.7.4 Guidance and Tooling ................................................................ Error! Bookmark not defined.
4.7.5 Tools .................................................................................................. Error! Bookmark not defined.
4.8 Upper and Lower Casing .................................................................... Error! Bookmark not defined.
4.8.1 Guidance and Tooling ................................................................ Error! Bookmark not defined.
4.8.2 Tools .................................................................................................. Error! Bookmark not defined.
4.9 Buffer Overflows .................................................................................... Error! Bookmark not defined.
4.9.1 Upper and Lower Casing Operations................................... Error! Bookmark not defined.
4.9.2 Normalization Operations ....................................................... Error! Bookmark not defined.
4.9.1 Guidance and Tooling ................................................................ Error! Bookmark not defined.
4.9.2 Tools .................................................................................................. Error! Bookmark not defined.
4.10 Controlling Syntax................................................................................. Error! Bookmark not defined.
4.10.1 Guidance and Tooling ................................................................ Error! Bookmark not defined.
4.10.2 Tools .................................................................................................. Error! Bookmark not defined.
4.11 Character Set Mismatch ...................................................................... Error! Bookmark not defined.
4.11.1 Guidance and Tooling ................................................................ Error! Bookmark not defined.
4.11.2 Tools .................................................................................................. Error! Bookmark not defined.
5 Conclusion ................................................................................... Error! Bookmark not defined.