skip book previous and next navigation links
go up to top of book: HP OpenVMS Guide to System Security HP OpenVMS Guide to System Security
go to beginning of part: Security for the System Administrator Security for the System Administrator
go to beginning of appendix: Assigning Privileges Assigning Privileges
go to previous page: DIAGNOSE Privilege (Objects) DIAGNOSE Privilege (Objects)
go to next page: EXQUOTA Privilege (Devour)EXQUOTA Privilege (Devour)
end of book navigation links

DOWNGRADE Privilege (All)  



The DOWNGRADE privilege permits a process to manipulate mandatory access controls. The privilege lets a process write to an object of lower secrecy, in violation of the Bell and LaPadula confinement (*) property.1 This privilege is reserved for enhanced security products like the Security Enhancement Service software (SEVMS).
Footnotes
1

Name of the restriction on write-downs. Multilevel security requires the complete prohibition of write-downs by untrusted software.

( Number takes you back )

go to previous page: DIAGNOSE Privilege (Objects) DIAGNOSE Privilege (Objects)
go to next page: EXQUOTA Privilege (Devour)EXQUOTA Privilege (Devour)