The DOWNGRADE privilege permits a process to manipulate mandatoryaccess controls. The privilege lets a process write to an objectof lower secrecy, in violation of the Bell and LaPadula confinement(*) property.1 This privilegeis reserved for enhanced security products like the Security EnhancementService software (SEVMS). Footnotes