More secure, well they can be encrypted - the better level of security resides with the fact they are held server side and not inline to the CF page and can have a greater degree of control placed on them within the SQL Server/Windows Security model. Sure they can be decrypted fairly easily but are harder to get to than inline SQL. Say debugging is turned on by accident for your app and bam all the SQL is outputted to your pages - with inline SQL you get the whole thing displayed, tables, columns - maybe even sensitive values - with SP;s you dont get this, while you get the values, you do not get any of the other data which makes it harder to decipher what a DB structure consists of if you so wish to attack it.
They generally are faster (though granted, in some cases they may not be - cursors springs to mind). The speed increase may not be HUGE but it all adds up. You get a greater degree of control with the QE than you can with inline SQL - and in some case yields superb speed increases. Jochem van Dieten wrote: >Neil Robertson-Ravo wrote: > > >>I doubt you can see them as being on a par with SP's - SP's are more >>secure >> >> > >Why would they be more secure? > > > > >>faster (albeit once you tweak the Query Engine in some cases), >> >> > >Why would they be faster? > >Jochem > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Discover CFTicket - The leading ColdFusion Help Desk and Trouble Ticket application http://www.houseoffusion.com/banners/view.cfm?bannerid=48 Message: http://www.houseoffusion.com/lists.cfm/link=i:6:2358 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/6 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:6 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.6 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
