The primary roles of a B2B Web site are aggregating multiple extranets into a single Web site and providing the security context in which companies can safely conduct business online with other companies and individuals.
Application software used by businesses today is not built to run within a B2B security context. Therefore developers are forced to find a way to bolt security and content access control onto typical business applications.
Role-based security is typically not sufficient for the types of content access problems that B2B commerce presents. However, developers can build a powerful, permission list-based access control system using a SQL database and can expose its data to content managers with Web browsers so that nontechnical people can manage the content access settings on the site.