Database security is mainly about managing permissions. Permissions are the security mechanisms that tie principals (for example, logins) to securables (for example, tables). With SQL Server 2014, permissions can be applied at a granular level that provides a great deal of flexibility and control.
Permissions in SQL Server 2014 revolve around three commands:
DENY. These three commands have been around since SQL Server 2000. When permission is granted, the user or role is given permission to perform an action, such as creating a table. The
DENY statement denies permission on an object and prevents the principal from gaining
GRANT permission based on membership in a group or role. The
REVOKE statement removes ...