I just got word I will be giving a workshop at the Texas Regional Infrastructure Security Conference (TRISC) in May. Right now the session is scheduled for Wednesday from 1:30 through 4:30 so there will be a lot of time for demonstrations and questions. The presentation is titled “The Second Most Secure Database” and will look at various aspects of database system security. Examples will be give for Microsoft SQL Server 2005 and MySQL 5.0, but the techniques apply to pretty much all modern database engines.
This should be a fun event because I have found that a lot of people and organizations underestimate the potential to use database security features to help implement defense in depth for web applications and web services. Having a full three hour workshop (versus an hour or so for a presentation) will let us really drill down into technical specifics.
dan _at_ denimgroup.com