Defending against SQL injection – platform-level defenses
As mentioned earlier, platform-level defenses refer to all of the security measures we can apply at a platform and infrastructure level, possibly preventing malicious commands from entering or leaving the application and identifying and stopping harmful traffic. This also includes applying security measures to the database system itself.
Here, we are presenting a view of what can be done to secure an application against SQL injection by applying security controls and measures outside of it, in this way, granting additional layers of protection. This concept is called defense-in-depth and is one of the most relevant aspects of information security, helping to minimize possible threats against systems and applications alike.
Application-level firewall logic
The first, and probably most well-known, concept of protection is firewalling. A firewall is, generally speaking, an object that decides, usually according...