Josh Berkus
Topic: 
Database Security for Web Geeks
Company: 
PostgreSQL

Josh Berkus is a member of the PostgreSQL Core Team, and has 15 years of experience with databases. He is an expert in database application performance, data warehousing and has spent the last 6 months herding cats to get 8.4 out the door. He also makes pottery.

Abstract: 

Database security seems like such a complex topic that most web application developers choose to simply ignore it. This can result in lost sleep, lost weekends, lost customers and ultimately losing your job.

Database application veteran Josh Berkus explains a simple approach to database security he's used with major commercial online sites, and introduces some basic tools on how to configure your application for a reasonable level of security without losing your mind. Topics:

* Control vs. Security

* Access Control

* Authentication

* SQL Injection

* Object Permissions

* Security Framerworks