You are developing a security policy for the SQL Server developers in your organization.
You need to create a security strategy to protect Transact-SQL applications from SQL
injection attacks. What should you include in the strategy?

A.
Disable Service Broker.

B.
Parse input parameters to prevent the use of the following strings: • & • @ • // • ++

C.
Require certificates for Service Broker communications.

D.
Parse input parameters to prevent the use of the following strings: • ; • — • /* • */