Presenter: Stephen Aldrich
Room: Ballroom, EMU 244, Level 2
Presentation: Let’s Get a better understanding of SQL Injection
Time: 02:00p – 02:30p

We have all heard of SQL injection, but have you ever wanted to learn how it works under the hood? SQL injection was first documented in the late 90s, but it is still listed as a number 3 web application security risks in the OWASP Top 10. Why is that? To understand how dangerous it can be, and how to prevent it, requires a better understanding of what it is and how it works.
Learning Objectives:

• Provide a foundational overview of SQL injection.
• Walk through some common SQL injection attacks to demonstrate how they pose a risk to the confidentiality, integrity and availability of data contained within a database.
• How to limit the risk of SQL injection attacks and additional resources.

Attendees will leave with the knowledge to explain the dangers of SQL injection to their organization and peers, as well as, how to better identify and protect against these types of attacks.