Ben Johnston in SQL Server

How to detect and mitigate Row-Level Security attacks in SQL Server (complete guide, part six)

Detect and mitigate attacks against SQL Server Row Level Security (RLS) - side-channel timing attacks, excessive-error patterns, brute force attempts....

03 October 2023 25 min read

Ben Johnston in SQL Server

SQL Server Row-Level Security: Attacks & vulnerabilities (complete guide, part five)

Explore SQL Server Row-Level Security vulnerabilities - direct attacks, indirect attacks, and side-channel bypasses. Essential reading before deploying RLS in...

25 September 2023 22 min read

Ben Johnston in SQL Server

SQL Server Row-Level Security: Integration, anti-patterns, and alternatives (complete guide, part four)

A complete guide to SQL Server Row-Level Security integration, anti-patterns, and alternatives.…

17 September 2023 20 min read

SQL Server

Ben Johnston in SQL Server

SQL Server Row-Level Security: Performance, tuning, and troubleshooting (complete guide, part three)

Tune SQL Server Row Level Security performance: compare authentication methods (SESSION_CONTEXT, roles, AD), optimise access predicate indexing, and troubleshoot ETL...

10 September 2023 25 min read

SQL Server

Ben Johnston in SQL Server

SQL Server Row-Level Security: Setup, access predicates, and examples (complete guide, part two)

Set up SQL Server Row Level Security with access predicates (inline TVFs) and security policies. Part 2 covers three setup...

03 September 2023 16 min read

SQL Server

Ben Johnston in SQL Server

A practical introduction to Row-Level Security in SQL Server (complete guide, part one)

Row-Level Security in SQL Server lets identical queries return different rows per user. Here's how it works, when to use...

01 August 2023 16 min read