Ask the Expert

Defense against SQL injection

Now that I'm building services using data and components from outside my unit, how do I guard against SQL injection on components I can't control?

    Requires Free Membership to View

SQL injection is one of the many content based attacks. The only way to deal with this successfully is to use very high performance content filtering and attack signature recognition. This processing is very compute expensive however, so it is best offloaded from individual application platforms and performed as a network service provided to web service applications.

This was first published in April 2006

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: