Blogs Dennes Torres in Blogs Dynamic Data Mask is now useful and no one noticed it Dynamic data mask is a very interesting security feature allowing us to mask critical fields such as e-mail, phone number,... 22 November 2021 3 min read
Blogs Louis Davidson in Blogs Securing access to data for admin and dbo In this blog, I want to explore what you can do to block the owner of a database from doing... 19 March 2018 11 min read
.NET Dino Esposito in .NET Revisiting Script Injection in ASP.NET The danger of Cross-Site Scripting (XSS) has to be dealt with in any web application. You do this by validating... 05 July 2017 12 min read
T-SQL Programming Robert Sheldon in T-SQL Programming Encrypting SQL Server: Using an Encryption Hierarchy to Protect Column Data SQL Server Encryption is an essential part of what is required for protecting data. Column-level encryption can be a very... 13 December 2016 15 min read
Database DevOps William Brewer in Database DevOps Questions About SQL Server Security and Access Control You Were Too Shy to Ask For many developers, database security and Access control is just something that gets in the way of development work. However,... 04 November 2016 23 min read
Robert Sheldon The Logical Data Warehouse – Towards a Single View of All the Data What is wrong with the Enterprise Data Warehouse? Quite a lot, it seems. By taking the narrow view that the... 09 November 2015 14 min read
Tom Fischer Safe(r) Custom User-Authentication If you are still storing passwords with MD5 hashing you're doing it wrong. The .NET platform provides a Cryptography library... 12 June 2015 16 min read
Robert Sheldon How to Get SQL Server Security Horribly Wrong It is no good doing some or most of the aspects of SQL Server security right. You have to get... 29 April 2015 24 min read
Phil Factor Schema-Based Access Control for SQL Server Databases Access-control within the database is important for the security of data, but it should be simple to implement. It is... 09 April 2015 25 min read
Nick Harrison ASP.NET MVC Security through Validation ASP.NET MVC provides a way of providing declarative validation of user inputs. It removes a lot of the tedium of... 20 January 2015 13 min read
Joshua Feierman The Mindset of the Enterprise DBA: Delegating Work A lot of the routine jobs demanded of a DBA can be automated, but a tougher prospect is to automate... 17 October 2014 19 min read
David Njoku Introduction to Oracle Password Verification and Complexity Function Security is in the news again. It seems there’s no greater click-bait than a story about indecent photos of beautiful... 16 September 2014 5 min read
Saurabh Dhoble Setting Up Your SQL Server Agent Correctly It is important to set up SQL Server Agent Security on the principles of 'executing with minimum privileges', and ensure... 28 May 2014 15 min read
Buck Woody Which New Technology Should I Chase? It is a question that almost anybody working in IT occasionally ask themselves. 'How can I best develop my career... 06 May 2014 18 min read
Kevin Feasel SQL Injection: How it Works and How to Thwart it This article is an extract from the book Tribal SQL. In this article, Kevin Feasel explains SQL injection attacks, how... 24 April 2014 33 min read
Syed Jaffar Hussain How is data security maintained and what’s new in Oracle 12c database security – Part 1 Securing enterprise business-critical data is as important for DBAs as database tuning and data protection. Oracle provides comprehensive and powerful... 16 April 2014 5 min read
Dino Esposito Thoughts on ASP.NET MVC Authorization and Security It is only a matter of time in developing most websites that you'll need to implement a way of restricting... 22 July 2013 11 min read
Feodor Georgiev Collecting the Information in the Default Trace The default trace is still the best way of getting important information to provide a security audit of SQL Server,... 02 July 2013 14 min read
Alexander Karmanov An Incremental Database Development and Deployment Framework Often, an existing database application must evolve quickly by incremental steps. Alex describes a tried and tested system to provide... 12 February 2013 27 min read
Bert Jan van der Steeg Database Management for SharePoint 2010 With each revision, SharePoint becomes more a SQL Server Database application, with everything that implies for planning and deployment. There... 10 May 2011 13 min read
