Enhancing the security of a Microsoft JDBC Driver for SQL Server application involves more than avoiding common coding pitfalls. An application that accesses data has many potential points of failure that an attacker can exploit to retrieve, manipulate, or destroy sensitive data. It is important to understand all aspects of security, from the process of threat modeling during the design phase of your application to its eventual deployment, and continuing through its ongoing maintenance.
The topics in this section describe some common security concerns including connection strings, validating user input, and general application security.
In This Section
|Securing Connection Strings||Describes techniques to help protect information used to connect to a data source.|
|Validating User Input||Describes techniques to validate user input.|
|Application Security||Describes how to use Java policy permissions to help secure a JDBC driver application.|
|Using SSL Encryption||Describes how to establish a secure communication channel with a SQL Server database using Secure Sockets Layer (SSL).|
|FIPS Mode||Describes how to use JDBC driver in FIPS complainant mode.|