As part of implementing a security model for our application, we've enforced schema security such that our application can only call stored procs, views, and UDFs. This helps prevent sql injection , ...