I have one data set, and three different row-level security use cases (let's call them None, A and B)

Case A implements row level security based on User id and data attribute '1'
Case B implements row level security based on Role id and data attribute '2'
None performs no row level security.

I am considering two ways of handling this:
1) Create three different solutions, one for each row level security case. Each metadata.xmi would have only on Business Model. Set permission on each solution so only the appropriate solution would be visible.
2) Create one solution with three Business Models, each with different row level security. Set security on each report within the solution so only the appropriate reports would be visible.

Are there advantages or disadvantages to either method? I've only used single business model .xmi files so far, and am not sure how differing row level security would work when I run my reports.

Any comments would be highly appreciated. Thank you.

-Chris