>>>>Are you using Windows Authentication or SQL Server Authentication?
>>>
>>>Using SQL Server authentication because user's will access SQL Server over the internet.
>>
>>And they're somehow authenticating with your system, or are anonymous users permitted to change data? What development platform are you using?
>
>Application is a fat client. Still working on the particulars but I'm intending on authentication through SSL to the SQL server on a public IP/domain name... no anonymous access allowed. Obviously if SQL Server doesn't natively handle record level "ownership" then it won't be hard for a tech-savy person to authenticate to the SQL server outside of my application and delete records manually.
Hmmm... I am unaware of anything native to SQL Server, especially if you are using SQL Server Authentication. I will be watching this thread because I would also like to know the answer.