I concur with the others. At my previous gig (11gR1), we used column level access control that was...controlled by a given role. The column in question was a SSN and worked like a charm. Implementation was fairly easy, but beware of the applications that may need the SSN for various logic. We found that we were using the last 4 digits to (aid) do customer lookups. Just a little gotcha that was taken care of relatively quickly, just something to be aware of. chet chet justice 813.863.1213 http://oraclenerd.com http://twitter.com/oraclenerd http://www.linkedin.com/in/chetjustice On Mon, Oct 5, 2009 at 3:35 PM, Jeffrey Beckstrom <JBECKSTROM@xxxxxxxxx>wrote: > We have a requirement to disallow access to a few columns of a table. > Any suggestions on how to do this? I was thinking of Virtual Private > Database but that would exclude the entire row. > > Jeffrey Beckstrom > Database Administrator > Greater Cleveland Regional Transit Authority > 1240 W. 6th Street > Cleveland, Ohio 44113 >