108 Security Tests

Every validation rule is verified with automated tests for incoming queries and outgoing responses.

Test Categories

Our test suite covers all aspects of bidirectional database query validation.

Query Whitelist

16 Tests

SQL whitelist enforcement, table permissions, function restrictions.

Details

SQL Injection Prevention

4 Tests

Parameterization enforcement, inline value blocking.

Details

Authentication

8 Tests

SCRAM-SHA-256 validation, user verification, password security.

Details

Authorization

10 Tests

Table/function permissions, database restrictions, access control.

Details

Response Validation

4 Tests

Row limits, column masking, result validation.

Details

Rate Limiting

2 Tests

Query throttling, DoS prevention.

Details

Policy Engine v2

14 Tests

Template matching, parameter validation, range checks.

Details

Transaction Safety

6 Tests

BEGIN/COMMIT/ROLLBACK, savepoints, transaction isolation.

Details

Error Handling

3 Tests

Syntax errors, missing tables/columns, error propagation.

Details

Bidirectional Validation

Query Validation

Incoming queries are validated against the whitelist before reaching the database:

  • Query template matching
  • Parameter type validation
  • Table/function allowlist
  • SQL injection pattern detection

Response Validation

Outgoing responses are validated to prevent data leaks:

  • Row count limits
  • Column masking (SSN, email)
  • Result schema validation
  • Error response sanitization

Compliance Mapping

Our tests are aligned with industry standards and regulations.

ISO 27001

Controls for access control, cryptography, and operational security.

OWASP Top 10

Full coverage of OWASP Database Security risks including SQL injection.

BSI Grundschutz

IT baseline protection modules for database security.

BAIT/VAIT

Financial sector-specific requirements from BaFin.

Ready to Secure Your Database?

Contact SalesView Pricing