Presentation on SQL Security

The SQL Security Team’s Raul Garcia and Il- Sung Lee are presenting at 1 PM PST today on SQL Security in an online webcast. http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032444124&Culture=en-US. Good, 300 level discussion on how to secure SQL Server. Among other things, Raul has a nice demo of sql injection and some discussion on how to mitigate it…. Read more

Quick security references (QSR) on Cross-Site scripting and SQL injection.

  Recently the Security Development Lifecycle (SDL) team announced the release of new type of security guidance papers called Quick security references (QSRs). The first two papers focus on Cross-Site scripting and SQL Injection. I would strongly recommend reading these interesting QSRs, as well as keeping an eye on the SDL blog.  -Raul Garcia  SDE/T … Read more