What process scrubs user input to prevent exploitation of security holes?

• A. Data Normalization
• B. Input Sanitization
• C. Tokenization
• D. Data Compression

Answer: (B)

Input sanitization is the process of scrubing user input to prevent exploitation. It involves removing or neutralizing potentially dangerous input so it cannot alter how the program behaves, inject code, or compromise data. This often means escaping or encoding special characters, stripping out malicious HTML/JavaScript, and validating input against safe patterns. By sanitizing input, you reduce risk from attacks like SQL injection and cross-site scripting, since only safe data is allowed to be processed or stored. This is distinct from data normalization, which standardizes data formats and isn’t primarily about security. Tokenization replaces sensitive data with safe tokens and isn’t about cleaning input, and data compression isn’t related to input security.