We have learned about custom validations, leveraging client-side validation, responding if somebody hacks into the system and bypasses the client-side validation, and additional layer security at the server side. Finally, we performed remote validation from the MVC framework.
In this chapter, we will address the following concerns with respect to data security:
- Do we have a provision in Entity Framework (EF) to control SQL queries?
- We can perform or execute inline SQL queries directly from EF.
- What if someone hacks the system and performs SQL injection? Do SQL queries actually open up those security issues?
- We could use parametrized queries to avoid SQL injection.
- If we go down the plain SQL queries route, can we leverage LINQ queries?
- Yes, we can still leverage them in LINQ queries.
- Can we execute the...