Re: Robustness of CoreData against malicious documents?
Re: Robustness of CoreData against malicious documents?
- Subject: Re: Robustness of CoreData against malicious documents?
- From: Cem Karan <email@hidden>
- Date: Tue, 4 Apr 2006 12:10:45 -0400
On Apr 4, 2006, at 11:57 AM, William Bumgarner wrote:
On Apr 4, 2006, at 7:53 AM, Cem Karan wrote:
If you are worried about untrusted data sources, one could always
run an XML verifier before loading the data (where at least you
could get a level assurance based on the XML verifier, or for the
truly paranoid, run the XML verifier as a part of an assured
pipeline on a trusted machine (i.e, "Rainbow book" level of
assurance)).
I was hoping that CoreData would handle this for me... :/
Validating an XML schema is an expensive operation. You can find
the CoreData DTD in /System/Library/DTDs (along with DTDs for other
XML based data formats on the system).
In general, Core Data will toss an exception or return an NSError
(return NO/nil and fill in an NSError**, really) in the face of
malformed data.
I know that its an expensive operation, but I need to be able to do
it; we're just too tempting a target.
Thanks,
Cem Karan
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Cocoa-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden