| title | Securing JDBC driver applications | Microsoft Docs |
|---|---|
| ms.custom | |
| ms.date | 08/12/2019 |
| ms.prod | sql |
| ms.prod_service | connectivity |
| ms.reviewer | |
| ms.technology | connectivity |
| ms.topic | conceptual |
| ms.assetid | 90724ec6-a9cb-43ef-903e-793f89410bc0 |
| author | David-Engel |
| ms.author | v-daenge |
[!INCLUDEDriver_JDBC_Download]
Enhancing the security of a [!INCLUDEjdbcNoVersion] application involves more than avoiding common coding pitfalls. An application that accesses data has many potential points of failure that an attacker can exploit to retrieve, manipulate, or destroy sensitive data. It is important to understand all aspects of security, from the process of threat modeling during the design phase of your application to its eventual deployment, and continuing through its ongoing maintenance.
The topics in this section describe some common security concerns including connection strings, validating user input, and general application security.
| Topic | Description |
|---|---|
| Securing Connection Strings | Describes techniques to help protect information used to connect to a data source. |
| Validating User Input | Describes techniques to validate user input. |
| Application Security | Describes how to use Java policy permissions to help secure a JDBC driver application. |
| Using encryption | Describes how to establish a secure communication channel with a [!INCLUDEssNoVersion] database using Transport Layer Security (TLS), previously known as Secure Sockets Layer (SSL). |
| FIPS Mode | Describes how to use JDBC driver in FIPS compliant mode. |