Abstract
There are few SQL vulnerabilities as commonly exploited as SQL injection. This form of database attack has destroyed companies and ruined careers, and is a constant challenge for database administrators. As a database professional, data is your greatest asset, and it is your responsibility to guard it above all else. SQL injection is not limited only to Dynamic SQL, but is a technique that can be applied to many areas of SQL Server. Therefore, understanding and defending against it are the most important priorities when considering SQL Server security.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Author information
Authors and Affiliations
Rights and permissions
Copyright information
© 2016 Ed Pollack
About this chapter
Cite this chapter
Pollack, E. (2016). Protecting Against SQL Injection. In: Dynamic SQL. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-1811-2_2
Download citation
DOI: https://doi.org/10.1007/978-1-4842-1811-2_2
Published:
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4842-1810-5
Online ISBN: 978-1-4842-1811-2
eBook Packages: Professional and Applied ComputingProfessional and Applied Computing (R0)Apress Access Books