Q

Defense against SQL injection

Web services security expert Andrew Nash discusses how to guard against SQL injection.

Now that I'm building services using data and components from outside my unit, how do I guard against SQL injection on components I can't control?

SQL injection is one of the many content based attacks. The only way to deal with this successfully is to use very

high performance content filtering and attack signature recognition. This processing is very compute expensive however, so it is best offloaded from individual application platforms and performed as a network service provided to web service applications.

This was first published in April 2006

Dig deeper on SOA security strategy

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchSoftwareQuality

SearchCloudApplications

SearchAWS

TheServerSide

SearchWinDevelopment

Close