Protecting Against SQL Injection

Pollack, Edward

doi:10.1007/978-1-4842-4318-3_2

Edward Pollack²

1439 Accesses
4 Citations

Abstract

There are few SQL vulnerabilities as commonly exploited as SQL injection. This form of database attack has destroyed companies, ruined careers, and is a constant challenge for security officers. As database professionals, data is our greatest asset, and it is our responsibility to guard it above all else. SQL injection is not limited only to dynamic SQL, but is a technique that can be applied to many areas of SQL Server. Therefore, understanding and defending against it are among the most important priorities when considering SQL Server security.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 49.99; Price excludes VAT (USA)

Softcover Book: USD 64.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Author information

Authors and Affiliations

Albany, NY, USA
Edward Pollack

Authors

Edward Pollack
View author publications
You can also search for this author in PubMed Google Scholar

Rights and permissions

Reprints and permissions

Copyright information

About this chapter

Cite this chapter

Pollack, E. (2019). Protecting Against SQL Injection. In: Dynamic SQL. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-4318-3_2

Download citation

DOI: https://doi.org/10.1007/978-1-4842-4318-3_2
Published: 28 December 2018
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4842-4317-6
Online ISBN: 978-1-4842-4318-3
eBook Packages: Professional and Applied ComputingApress Access BooksProfessional and Applied Computing (R0)

Publish with us

Policies and ethics