SQL Server comes with a powerful built-in permission management system. However, as most powerful tools, this one too can be difficult to use and get right.
This is a two-part session. During the first part, we will go through a review of SQL Server security terms and concepts, particularly the GRANT, REVOKE and DENY statements. For the second part, the audience selects topics that we will cover in detail. You will be able to choose from 12 different security pitfalls and misconceptions. All these pitfalls/misconceptions have one thing in common: If you are not aware of them, you might GRANT or DENY more permissions than you intended.
To get the most out of this 200 level session, you should feel comfortable writing simple queries and creating basic tables and procedures.
The following is a list of posts about the Pitfalls & Misconceptions: