Community developer events
SQL injection attacks and tips on how to prevent them
- Date
- Wed, 28 Oct 2009, 19:00 - 21:00 (Add to calendar) GMT
- Venue
- Dundee University , Dundee, GB
- Cost
- Free
The Talk
In light of some recent events, such as the man who was convicted of stealing 130 million credit card details through a SQL Injection attack, it is imperative that developers understand what a SQL Injection Attack is, how they are carried out, and most importantly, how to defend your code against attack.
In this talk Colin Mackay will demonstrate a SQL Injection Attack on an application in a controlled environment*. Heâll show you where the vulnerable code lies and what you can do to harden it.
Although this talk uses C# as the application language and Microsoft SQL Server 2008 as the database engine many of the concepts and prevention mechanisms will apply to any application that accesses a database through SQL.
* Demonstrating an attack on a system without the ownerâs consent is a breach of the 1990 Misuse of Computers Act, hence the controlled environment.
The Speaker
Colin Angus Mackay is a Software Developer living in Glasgow. He has been programming since the age of 9 starting with a Sinclair ZX Spectrum. He became a professional software developer in 1994, using a Smalltalk based language called Magik. In 1996 he started using C++ commercially and in 2002 migrated to the emerging language of C#.
Colin has received a number of awards including Code Project MVP (for 5 years) and Microsoft MVP (for 3 years). He is a member of the British Computer Society and a Member of the Institution of Analysts and Programmers. He is currently the chairman of Scottish Developers and has organised the last two Developer Day Scotland conferences (with a third in the works).
You can find out more on his blog at: http://blog.colinmackay.net
The Venue
We are meeting in the Queen Mother Building at Dundee University. After the meeting we normally retire to the the bar at Laing's
The Agenda
18:45 Doors Open
19:00 Welcome
19:10 The Talk (Part 1)
19:55
Break
20:05 The Talk (Part 2)
20:45 Feedback & Prizes
21:00 Repair
to the Pub
Map
Other nearby events
-
Nov
25
Lean, Kanban and Theory of Constraints
0km away in Dundee
The TalkThe application of Lean principles, Kanban and pull-systems theory along with Goldratt's Theory of Constraints revolutionised the manufacturing world in the second half of the twentieth century. Belatedly, the software world is waking up to the transformative effects these tools can have. There are still no silver bullets in the software world, but that doesn't mean that we can't improve our aim.
-
Nov
25
VBUG NEWCASTLE: SysInternals Tools
116km away in Newcastle-upon-Tyne
Following on from his very well received presentation on Windows performance monitoring and analysis at our September meeting, Richard Diver returns t
-
Dec
9
VBUG NEWCASTLE: Windows AZURE - What's In The Cloud?
116km away in Newcastle-upon-Tyne
Microsoft are due to release the first version of Windows Azure at the Professional Developers Conference in November 2009, this session will look at
-
Dec
17
SuperChristmas in Newcastle
118km away in Newcastle-upon-Tyne
In partnership with SuperMondays, Thursday Fizz, Girl Geeks, and Refresh Teesside, VBUG are proud to announce: SuperChristmas is the Christmas par
Related articles
Related podcasts
-
Vote of No Confidence
In this episode Ward Bell (from IdeaBlade) and Jeremy Miller discuss the Vote of No Confidence on Microsoft's Entity Framework and what it means for the Alt.NET and .NET communities.This episode does not have a sponsor, so if you are interested in sponsoring the podcast please contact us.Ward and...
Comments
Leave a comment
Sign in or Join us (it's free).