Suppose a web application implements authentication by constructing an SQL query from HTML from data using PHP’s prepared statements. What would happen if an attacker entered FRANK’ OR 1=1; -- in the web form’s user-name field? (a) The text will corrupt the query structure and the database will view it as a syntax error (b) The text will modify the structure of the SQL query and possibly bypass authentication (c) The application will try to authenticate a user whose user-name is FRANK’ OR 1=1; -- (d) The text will be confused as the password and authentication will probably fail

When writing queries in a programming language, why should we avoid creating a query by concatenating strings and instead use prepared statements or stored procedures in defense against SQL injection? a. concatenating strings helps prevent sql injection b. prepared statements or stored procedures help prevent the user/hacker from deliberately modifying the query by injecting sql instructions in the input values c. prepared statements prevent the query from taking as long to execute d. prepared statements enable the developer to just supply values without injecting sql

Test an application for SQL injection vulnerability: Propose a method for determining if it is susceptible to SQL injection attacks on text input.

Explain the major differences between hash functions and keyed-hash functions. In which scenarios would you use one or the other?

In a well organized essay, not a series of bullets, explain what "hashing" is. What is it used for? What makes it particularly attractive. In your essay be sure to indicate the order of magnitude required to store or to search for data using hashing.

1.6 Using SQL Server (Not Oracle)

What is the purpose of a hash function in hash table data structures?

q20- Choose ALL that apply.