NoSQL, no SQL injections?
- 6,898 views
This talk was given at DEF CON 2010 by Kuon Ding and Wayne Huang ...
This talk was given at DEF CON 2010 by Kuon Ding and Wayne Huang
NOSQL == NO SQL INJECTIONS?
This is a short talk on NoSQL technologies and their impacts on traditional injection threats such as SQL injection. This talk surveys existing NoSQL technologies, and then demos proof-of-concept threats found with CouchDB. We then discuss impacts of NoSQL technologies to existing security technologies such as blackbox scanning, static analysis, and web application firewalls.
- Total Views
- Views on SlideShare
- Embed Views