Pittsburgh SQL Server Users Group


Next Meeting: Tue, Jun 26 2018

SQL Injection Attacks: Are Your Queries Secure?

Language: English
Event Type: In-Person
Online Meeting URL: None
RSVPURL: https://www.meetup.com/PittsburghSQL/events/252640841/



UTC : Tue, Jun 26 2018 04:00 - 06:00
Event Time : Tue, Jun 26 2018 04:00 - 06:00 UTC
Your Local Time: Tue, Jun 26 2018 04:00 - 06:00


Nova Place
Pittsburgh, Pennsylvania

Direction: None

Featured Presentation

SQL Injection Attacks: Are Your Queries Secure?

Speaker: Bert Wagner, Principal Business Intelligence Developer Progressive Insurance

Summary: Sometimes using dynamic SQL is the only way to write a query that accomplishes what you need. But did you know that dynamic SQL statements can leave you vulnerable to SQL injection attacks? In this session we'll examine how SQL injection works and how we can write injection-proof queries through a series of examples and demos. We'll also look at why some commonly used techniques aren't as secure as many people think. If you ever write or maintain dynamic SQL queries, or work with developers who do, then this session is for you. After all, do you really want to be the person responsible for allowing hackers into your database?

About Bert: Bert Wagner teaches data-focused developers how to use SQL Server efficiently every week on his YouTube channel “SQL with Bert.” When not filming episodes, he gains inspiration for his content through his work as a Principal Business Intelligence Developer for Progressive Insurance in Cleveland, OH. Starting his career as an SSIS and SSRS developer, Bert fell in love with SQL Server query writing and performance tuning. Nowadays, he focuses on full stack web development and uses his database tuning skills to ensure that his applications run at peak performance.



Thank you to our Sponsors!







Back to Top