Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Learn T-SQL Querying A guide to developing efficient and elegant T-SQL code

Product type Paperback

Published in May 2019

Publisher Packt

ISBN-13 9781789348811

Length 484 pages

Edition 1st Edition

Languages

SQL

Tools

T-SQL

Concepts

Database Administration

Authors (2):

Pedro Lopes

Pam Lahoud

View More author details

Table of Contents (18) Chapters

Preface

1. Section 1: Query Processing Fundamentals FREE CHAPTER

2. Anatomy of a Query

3. Understanding Query Processing

4. Mechanics of the Query Optimizer

5. Section 2: Dos and Donts of T-SQL

6. Exploring Query Execution Plans

7. Writing Elegant T-SQL Queries

8. Easily-Identified T-SQL Anti-Patterns

9. Discovering T-SQL Anti-Patterns in Depth

10. Section 3: Assemble Your Query Troubleshooting Toolbox

11. Building Diagnostic Queries Using DMVs and DMFs

12. Building XEvent Profiler Traces

13. Comparative Analysis of Query Plans

14. Tracking Performance History with Query Store

15. Troubleshooting Live Queries

16. Managing Optimizer Changes with the Query Tuning Assistant

17. Other Books You May Enjoy

Leave a review - let other readers know what you think

The importance of parameters

As we discussed in the How query processing impacts plan reuse section on caching methods, the primary reason to parameterize queries is to ensure that query execution plans get reused. But why is this important and what other reasons might there be to use parameters?

Security

One reason to use parameterized queries is for security. Using a properly formatted parameterized query can protect against SQL injection attacks. A SQL injection attack is where a malicious user can execute database code (in this case, T-SQL) on a server by appending it to a data-entry field in the application. As an example, imagine we have an application that contains a form that asks the user to enter their name into...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (2)

Pedro Lopes

Pedro Lopes is a Program Manager in the Database Systems group, based in Redmond, WA, USA. He has over 19 years of industry experience and has been with Microsoft for 9 years. He is currently responsible for program management of Database Engine features for in-market and vNext versions of SQL Server, with a special focus on the Relational Engine. He has extensive experience with query performance troubleshooting and is a regular speaker at numerous conferences such as SQLBits, PASS Summit, SQLIntersection, Microsoft Ignite, and Microsoft Build. He blogs about SQL on the SQL Server Team blog. He has authored several tools in the Tiger toolbox on GitHub: AdaptiveIndexDefrag maintenance solution, BPCheck, and usp_WhatsUp.

See other products by Pedro Lopes

Lahoud

Pam Lahoud is a Program Manager in the Database Systems group, based in Redmond, WA, USA. She has been with Microsoft for 13 years and is currently responsible for program management of Database Engine features for in-market and vNext versions of SQL Server, with a special focus on the Storage Engine area. She is passionate about SQL Server performance and has focused on performance tuning and optimization, particularly from the developer's perspective, throughout her career. She is a SQL Server 2008 Microsoft Certified Master (MCM) with over 20 years of experience working with SQL Server.

See other products by Lahoud