This talk was given at DEF CON 2010 by Kuon Ding and Wayne Huang …
This talk was given at DEF CON 2010 by Kuon Ding and Wayne Huang
NOSQL == NO SQL INJECTIONS?
This is a short talk on NoSQL technologies and their impacts on traditional injection threats such as SQL injection. This talk surveys existing NoSQL technologies, and then demos proof-of-concept threats found with CouchDB. We then discuss impacts of NoSQL technologies to existing security technologies such as blackbox scanning, static analysis, and web application firewalls.