Row Level Security In SQL Server
SQL Server Row Level Security Row-level security (RLS) is a feature added as of SQL Server 2016. Instead of encrypting or decrypting a database’s table data, it restricts and filters a table’s row-level data in accordance with security policies defined by the user. This enables the database engine to limit the number of exposed data rows. This is a simple and powerful SQL Server security control that is transparent to both clients and user applications. Permissions Creating, altering, or dropping security policies requires the ALTER ANY SECURITY POLICY permission. Creating or dropping a security policy requires ALTER permission on the schema. Additionally, the following permissions are required for each predicate that is added: · SELECT and REFERENCES permissions on the function being used as a predicate. · REFERENCES permission on the target table being bound to the policy. · REFERENCES permission on every column from the target table used