Dynamic SQL

Applications, Performance, and Security

  • Edward Pollack

Table of contents

  1. Front Matter
    Pages i-xx
  2. Edward Pollack
    Pages 1-19
  3. Edward Pollack
    Pages 21-38
  4. Edward Pollack
    Pages 39-65
  5. Edward Pollack
    Pages 67-100
  6. Edward Pollack
    Pages 101-118
  7. Edward Pollack
    Pages 119-162
  8. Edward Pollack
    Pages 163-175
  9. Edward Pollack
    Pages 177-207
  10. Edward Pollack
    Pages 209-232
  11. Edward Pollack
    Pages 233-254
  12. Edward Pollack
    Pages 255-276
  13. Back Matter
    Pages 277-279

About this book


This book is an introduction and deep-dive into the many uses of dynamic SQL in Microsoft SQL Server. Dynamic SQL is key to large-scale searching based upon user-entered criteria. It’s also useful in generating value-lists, in dynamic pivoting of data for business intelligence reporting, and for customizing database objects and querying their structure.

Executing dynamic SQL is at the heart of applications such as business intelligence dashboards that need to be fluid and respond instantly to changing user needs as those users explore their data and view the results. Yet dynamic SQL is feared by many due to concerns over SQL injection attacks. Reading Dynamic SQL: Applications, Performance, and Security is your opportunity to learn and master an often misunderstood feature, including security and SQL injection.

All aspects of security relevant to dynamic SQL are discussed in this book. You will learn many ways to save time and develop code more efficiently, and you will practice directly with security scenarios that threaten companies around the world every day. Dynamic SQL: Applications, Performance, and Security helps you bring the productivity and user-satisfaction of flexible and responsive applications to your organization safely and securely. Your organization’s increased ability to respond to rapidly changing business scenarios will build competitive advantage in an increasingly crowded and competitive global marketplace.

  • Discusses many applications of dynamic SQL, both simple and complex.
  • Explains each example with demos that can be run at home and on your laptop.
  • Helps you to identify when dynamic SQL can offer superior performance.
  • Pays attention to security and best practices to ensure safety of your data.


Dynamic SQL SQL Server T-SQL SQL Injection Pivot Search Unpivot

Authors and affiliations

  • Edward Pollack
    • 1
  1. 1.AlbanyUSA

Bibliographic information