Web application security - the fast guide 1.1 | Page 40

Chapter 2 - Web Application technologies
P a g e | 40
Commonly used databases for that purpose are Oracle, MS-SQL and MySQL
databases.
Decision regarding what is the most suitable Database engine to use is generally
related to many factors like the application size, used server side scripting
language or framework or even sometimes to which market or industry the web
application is developed.
Web will not go through any comparisons between the different database
management systems but we will focus only on covering SQL language one of the
technologies supported by all those databases.
SQL:
SQL stands for structured query language. SQL provides two sub Languages Data
definition language (DLL) responsible on building the database tables, setting
permissions and specifying different constraints.
DDL example:
CREATE TABLE Persons
(
PersonID int,
LastName varchar(255),
FirstName varchar(255),
Address varchar(255),
City varchar(255)
);
The second sub language is the Data manipulation language (DML) containing
special commands related to insert, update, delete or retrieve a set of records
from the database.
DML example:
INSERT INTO Customers (CustomerName, City, Country)
VALUES ('Cardinal', 'Stavanger', 'Norway');
2.11 Server side functionalities - Web Services
W e b S e r v i c e s
R E S T
S O A P
b a s e d
f u l l
1. Simpler
2. Concise
3. Closer to web
Philosophy
1. Better support
2. secure
3. Embedded fault
handling.
Figure 17: Two types of web services