ABSTRACT
Web security is critical to building a robust website. This chapter introduces several security techniques to build a secure website, including login authentication, cleansing login data, encryption, strong password creation, SQL injection protection, session protection, and CAPTCHA. The security techniques are concerned with securing interactions with the Oracle database. The chapter guides the user through how to create an Oracle database table with valid usernames and passwords, how to create an Oracle database connection class, and how to test the connection class to ensure that it is working properly. Application programming interfaces (APIs) is used to communicate with Oracle. An API enables a software program to interact with other software programs. SQL injection is a technique often used to attack databases through a website. Specifically, it involves creating or altering existing SQL commands to expose hidden data, override valuable data or even execute dangerous system-level commands on the database host.
