Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.misc -> Difference between PreparedStatement and StoredProcedure ?
Hi,
Well.. I'm trying to understand differences between the 3 ways of a web application to call a database (in a security and sql injection risks overview) :
I have read some explanation on the web but i still have a lot of difficulties to understand the fondamental differences beetween preparedStatement and storedProcedure ?
The two ways seems to be effective to limit SqlInjection attacks but i don't see why StoredProcedure are better than PreparedStatement.
Is anybody have a good explanation for that ?
Thanks a lot in advance for your help
@+
Lorenzo
Received on Wed Mar 14 2007 - 11:12:35 CDT