Category: antipattern

Speaking on SQL Injection at MySQL Conference

I’m speaking this year at the MySQL Conference & Expo 2010 in Santa Clara. Be sure to get your early registration discount by Feb 22! If you miss that deadline, get 25% off with this discount code: mys10fsp I’m presenting a talk on SQL Injection Myths and Fallacies. This may seem like a topic that’s…

February 18, 2010
EAV FAIL

Photo by Mike Gogulski, used in accordance with the Creative Commons BY-SA 3.0 license The photo above illustrates (by counter-example) an important characteristic of a normalized database: each logical “type” of attribute belongs in a separate column. Just because three values happen to be numeric doesn’t mean it makes sense to SUM() them together. But if…

May 21, 2009

Speaking on SQL Injection at MySQL Conference