To see or process decrypted data, users must have:
select and decrypt permissions on the column used in the target list and in where, having, order by, group by, and other such clauses
A password used to encrypt the key if you use the passwd password_phrase clause with the create or alter encryption key commands. See Chapter 7, “Protecting Data Privacy from the Administrator.”
Configuring Adaptive Server for restricted decrypt permission restricts implicit decrypt permissions. You must explicitly grant table owners decrypt permission to enable them to select from an encrypted column on tables that they own. Users cannot expect that execute permission on a stored procedure or select permission on a view does not explicitly grant users decrypt permission against the underlying table. The user must also have explicit decrypt permission on the base table.
