Articles tagged Security

Blogs

Dennes Torres in Blogs

Workspace Identity and Resource Instance Rules: More than simple features

Sometimes, when a new feature is announced, it’s in fact hiding bigger changes on the entire environment. This is exactly what happens with these Workspace...

22 May 2024 3 min read

Blogs

Dennes Torres in Blogs

Azure OpenAI and RAG Security

The most watched videos on my youtube channel are related to security. Azure SQL Networking Secrets and Cloud Security: Secure Access from your Applications to...

10 April 2024 3 min read

Blogs

Ben Johnston in Blogs

SQL Server Row Level Security Deep Dive. Part 1 – Introduction and Use Cases

My initial goal of documenting and exploring SQL Server Row Level Security (RLS) was to show the basic functionality and focus on a few performance...

01 August 2023 17 min read

Blogs

Dennes Torres in Blogs

.NET App Services: Containers or not containers, that’s the question

The app services in the title can be function apps, web apps or more. We can deploy the app services on the native app service...

30 August 2022 5 min read

MySQL

Lukas Vileikis in MySQL

Security in MySQL: Part Two

There’s more to security in MySQL than user account privileges. In this article, Lukas Vileikis explains the other components of MySQL security.…

27 May 2022 10 min read

Blogs

Dennes Torres in Blogs

Azure and MFA Secrets

MFA and conditional access policies are powerful tools for our cloud security, but they are full of tricks. I don’t pretend to cover the basics...

27 December 2021 3 min read

Blogs

Dennes Torres in Blogs

Dynamic Data Mask is now useful and no one noticed it

Dynamic data mask is a very interesting security feature allowing us to mask critical fields such as e-mail, phone number, credit card and so on....

22 November 2021 3 min read

Blogs

Louis Davidson in Blogs

Securing access to data for admin and dbo

In this blog, I want to explore what you can do to block the owner of a database from doing stuff in the database they...

19 March 2018 11 min read

.NET

Dino Esposito in .NET

Revisiting Script Injection in ASP.NET

The danger of Cross-Site Scripting (XSS) has to be dealt with in any web application. You do this by validating the input from all possible...

05 July 2017 12 min read

T-SQL Programming

Robert Sheldon in T-SQL Programming

Encrypting SQL Server: Using an Encryption Hierarchy to Protect Column Data

SQL Server Encryption is an essential part of what is required for protecting data. Column-level encryption can be a very effective way of doing this....

13 December 2016 15 min read

Database DevOps

William Brewer in Database DevOps

Questions About SQL Server Security and Access Control You Were Too Shy to Ask

For many developers, database security and Access control is just something that gets in the way of development work. However, several recent security breaches have...

04 November 2016 23 min read

Robert Sheldon

The Logical Data Warehouse – Towards a Single View of All the Data

What is wrong with the Enterprise Data Warehouse? Quite a lot, it seems. By taking the narrow view that the struggle is that of accommodating...

09 November 2015 14 min read

Tom Fischer

Safe(r) Custom User-Authentication

If you are still storing passwords with MD5 hashing you're doing it wrong. The .NET platform provides a Cryptography library that allows you to develop...

12 June 2015 16 min read

Robert Sheldon

How to Get SQL Server Security Horribly Wrong

It is no good doing some or most of the aspects of SQL Server security right. You have to get them all right, because any...

29 April 2015 24 min read

Phil Factor

Schema-Based Access Control for SQL Server Databases

Access-control within the database is important for the security of data, but it should be simple to implement. It is easy to become overwhelmed by...

09 April 2015 25 min read

Nick Harrison

ASP.NET MVC Security through Validation

ASP.NET MVC provides a way of providing declarative validation of user inputs. It removes a lot of the tedium of this important task. Nick Harrison...

20 January 2015 13 min read

Joshua Feierman

The Mindset of the Enterprise DBA: Delegating Work

A lot of the routine jobs demanded of a DBA can be automated, but a tougher prospect is to automate these jobs in a way...

17 October 2014 19 min read

David Njoku

Introduction to Oracle Password Verification and Complexity Function

Security is in the news again.  It seems there’s no greater click-bait than a story about indecent photos of beautiful young Hollywood actresses stolen from...

16 September 2014 5 min read

Saurabh Dhoble

Setting Up Your SQL Server Agent Correctly

It is important to set up SQL Server Agent Security on the principles of 'executing with minimum privileges', and ensure that errors are properly logged...

28 May 2014 15 min read

Buck Woody

Which New Technology Should I Chase?

It is a question that almost anybody working in IT occasionally ask themselves. 'How can I best develop my career to make sure my skills...

06 May 2014 18 min read