This talk will look at the Oracle indexing architecture and examine some new flaws, with demonstration exploits. We'll also discuss how to find such issues in custom applications as well as an examination of the forensic aspects.
David Litchfield is recognized as one of the world's leading authorities on database security. He is the author of "Oracle Forensics", the "Oracle Hacker's Handbook", the "Database Hacker's Handbook and SQL Server Security" and is the co-author of the "Shellcoder's Handbook"and "Special Ops". He is a regular speaker at a number of computer security conferences and has delivered lectures to the National Security Agency, the UK's Security Service, GCHQ and the Bundesamt für Sicherheit in der Informationstechnik in Germany.