Restricting user access by column is more precise than assigning user privileges on views, and it avoids the unnecessary proliferation of views.
You can define column level access restrictions by specifying a comma-separated list of columns after INSERT, REFERENCES, SELECT, or UPDATE when assigning privileges on a view or table:
- In a GRANT statement, to allow only the specified privilege on a limited number of columns in a table or view.
- In a REVOKE statement, to limit broader privileges previously granted on a table or view.
For further information, see SQL Data Control Language.