Assignment: Combating Structured Query Language Injection in Web Applications
Structured Query Language (SQL) injection refers to the technique typically used by hackers or intruders to insert (inject) an unexpected segment of SQL, causing a database to perform an undesired or adverse action. When developing web applications, it is critical to ensure that the application filters or guards against SQL injection attacks.
In addition to using your readings to complete this assignment, you may choose to use the following link that addresses fixing SQL injection on various platforms:
Tasks:
• Create a Microsoft PowerPoint presentation of 8-10 slides to demonstrate the SQL injection and provide speaker notes.
• The focus of the presentation must be on SQL injection. In the presentation, include the following:
o Describe SQL injection and explain how it occurs.
o Describe countermeasures that can be taken to secure Java, .Net, and PHP programs/scripts from SQL injection.
o Describe how the following database management systems can be configured to guard against SQL injection: Oracle, MySQL, and Microsoft SQL Server.
o Provide an overview of the best practices and techniques commonly used to safeguard against SQL injection.
Ensure you write in a clear, concise, and organized manner; demonstrate ethical scholarship in accurate representation and attribution of sources; and display accurate spelling, grammar, and punctuation.