skip book previous and next navigation links
go up to top of book: HP OpenVMS Guide to System SecurityHP OpenVMS Guide to System Security
go to beginning of part: Security for the System AdministratorSecurity for the System Administrator
go to beginning of appendix: Assigning PrivilegesAssigning Privileges
go to previous page: DIAGNOSE Privilege (Objects)DIAGNOSE Privilege (Objects)
go to next page: EXQUOTA Privilege (Devour)EXQUOTA Privilege (Devour)
end of book navigation links

DOWNGRADE Privilege (All)  



The DOWNGRADE privilege permits a process to manipulate mandatoryaccess controls. The privilege lets a process write to an objectof lower secrecy, in violation of the Bell and LaPadula confinement(*) property.1 This privilegeis reserved for enhanced security products like the Security EnhancementService software (SEVMS).
Footnotes
1

Name of the restrictionon write-downs. Multilevel security requires the complete prohibitionof write-downs by untrusted software.

( Number takes you back )

go to previous page: DIAGNOSE Privilege (Objects)DIAGNOSE Privilege (Objects)
go to next page: EXQUOTA Privilege (Devour)EXQUOTA Privilege (Devour)