Jade is responsible for web application security for her company's e-commerce server. She is particularly concerned about XSS and SQL injection. Which technique would be most effective in mitigating these attacks?

These particular web application attacks are best mitigated with proper input validation. Any user input should be checked for indicators of cross-site scripting (XSS) or SQL injection. Error handling is always important, but it won’t mitigate these particular issues. Stored procedures can be a good way of assuring SQL commands are standardized, but that won’t prevent these attacks. Code signing is used for code that is downloaded from a web application to the client’s computer; it is used to protect the client, not the web application.