My company is in the process of upgrading a SQL Server 6.5 server to SQL Server 2000. A decision was made to use application roles for any applications using this server. From what I have read any tables used by an application must be in a single database in order to use application roles. So, we are planning to create a single 'application role' database which contains any tables that the different applications use if they share tables. In other words, application A and application B's tables would be in a single database if they share common tables. I've searched for information on app roles and can't seem to find much info. Is this the right approach? Should database design be sacrificed for highest level of security?