This course is a one day class run on your site or at a public venue or can be arranged on‐line that teaches the delegates about the common security issues often located in PL/SQL code and created by developers without an experience of database security. The course first places PL/SQL into the context of the problem of securing data and then looks at all of the common types of issues that make PL/SQL code vulnerable. Each type of PL/SQL coding issue is demonstrated so that the delegates can appreciate what vulnerable code looks like and then sample exploitations are demonstrated to show how the code is actually exploited by an attacker. Then for each example the code is re‐written to show how it can be made secure. Common issues include SQL and PL/SQL injection and design issues that allow this to happen.
The course also includes a look at other issues such as encryption, leakage of critical data, dangerous functions and use of incorrect privileges. The class also considers how to protect your PL/SQL code to make it harder for an attacker to steal or run code out of contextdeveloper who can write PL/SQL can understand the secure coding practices.
- Data Theft
- Coding Errors
- Dynamic SQL best practices
- Protecting PL/SQL
Who Can Benefit
- Database Administrators
- PL/SQL Developer
- The delegates must have a good working knowledge of PL/SQL ideally as a Developer or DBA to appreciate the content.
- The class is intended for DBA’s and developers who can write PL/SQL and is of an intermediate level when vulnerabilities are explained but a develope