PCI DSS stands for Payment Card Industry Data Security Standard, and is a worldwide security standard assembled by the Payment Card Industry Security Standards Council (PCI SSC). The PCI security standards are technical and operational requirements that were created to help organizations that process card payments prevent credit card fraud, hacking and various other security vulnerabilities and threats. The standards apply to all organizations that store, process or transmit cardholder data – with guidance for software developers and manufacturers of applications and devices used in those transactions. A company processing, storing, or transmitting cardholder data must be PCI DSS compliant.
Tags: Adobe ColdFusion, American Express, anti-virus software, Applications, architecture, Authentication, BlueDragon, Code, ColdFusion, ColdFusion Administrator, company processing, compliance, control measures, Data Security Standard, database server, Databases, Discover Financial Services, encryption, firewall, HTTP, Java, JCB International, Manitoba, Mastercard Worldwide, Payment Card Industry, Payment Card Industry Security Standards Council, payment card processing, Payment Processors, PCI DSS, public networks, Railo, raw processing, RDBMS, regulations, secure, secure systems, security, Security Standards Council, security systems, Server Side, software developers, software releases, SQL, SSC, the Council, Visa, Visa Inc ., web application, web application developers, web applications, web code, Web Servers
A common need in SQL is the ability to iterate over a list as if it were an array. In SQL it is not possible to declare arrays, unlike other programming languages such as ColdFusion, ActionScript and Java. Fortunately, there is a way around this problem: use a User-Defined Functions (UDFs) to create a tabular version of the data. Arrays are, after all, essentially tabular data (at their simplest, one dimension level).
Tags: ActionScript, array, data, database, database server, extend, function, Java, SQL, sub-routine, subroutine, t-sql, tabular, UDF, user defined function
The SQL Replace function enables us to look for a certain character phrase in a string and replace it with another character phrase. The updated string is then returned by the function.
Tags: database, database server, extend, fairly straight forward, function, Microsoft, Oracle, SQL, sub-routine, subroutine, t-sql, UDF, user defined function
Every seasoned developer will know that protecting your website from a hacker is a top priority, whether for your own reputation or for maintaining your company’s reputation and log-term revenue prospects.
Tags: Adobe, Application.cfc, Application.cfm, attack, best practice, Business, cfquery, cfqueryparam, ColdFusion, ColdFusion Administrator, cross-site scripting, database server, Databases, encryption, firewall, how to, howto, Java, Manitoba, Mark Kruger, prevention, protection, raw processing, RDBMS, script protect, security, software releases, SQL, SQL Injection, url, variables, vulnerability, Web Application Hacker, web code, Web Security, Web Server, Web Servers, webserver, XSS
In my previous post, What is a SQL Injection Attack, I gave a brief overview of SQL injection and Cross-Site Scripting (XSS), primarily with regard to websites. In the example given, we saw that an attack could take the form of a ‘hacked’ URL which contained either a literal SQL statement, or a hexadecimal string that could be interpreted by an insecure SQL database server.
Tags: attack, backup, ColdFusion, cross-site scripting, database, database server, hack, hacking, how to, howto, programatically, restore, rollback, script, Scripting, SQL, XSS