Forum Discussion
hooleylist
Mar 02, 2012Cirrostratus
Hi Nik,
ASM is positioned between HTTP clients and the front end web server tier. So ASM doesn't validate web app to SQL communication. It does look for suspicious user input using attack signatures, character set validation, size limits, etc. This should be the same whether the web app is using dynamic SQL queries or not.
Aaron