skip book previous and next navigation links
go up to top of book: HP OpenVMS Guide to System Security HP OpenVMS Guide to System Security
go to beginning of part: Security for the User Security for the User
go to previous page: Checklist for Contributing to System Security Checklist for Contributing to System Security
go to next page: Contents of a User's Security ProfileContents of a User's Security Profile
end of book navigation links
4Protecting Data  


This chapter extends the discussion of security design introduced in OpenVMS Security Model. It describes how the operating system controls the way a user process or an application can access a protected object.

To summarize, the operating system controls access to any object that contains shareable information. These objects are known as protected objects. Devices, volumes, logical name tables, files, common event flag clusters, group and system global sections, resource domains, queues, capabilities, and security classes fall into this category. An accessing process carries credentials in the form of rights identifiers, and all protected objects list a set of access requirements specifying who has a right to access the object in a given manner.

This chapter:



Descriptions of Object Classes describes the unique features of each class of protected object.

skip links to sections within this chapter.
Contents of a User's Security Profile
Security Profile of Objects
How the System Determines If a User Can Access a Protected Object
Controlling Access with ACLs
Controlling Access with Protection Codes
Understanding Privileges and Control Access
Auditing Protected Objects
end of content navigation links

go to previous page: Checklist for Contributing to System Security Checklist for Contributing to System Security
go to next page: Contents of a User's Security ProfileContents of a User's Security Profile