PORTIA@ASL1.ASL.hac.COM (Portia Shao EO/E52/D222 616-2635) (07/17/88)
The DOWNGRADE and UPGRADE privileges are used by the VMS Security Enhancement Service (SEVMS). DOWNGRADE lets a user decrease the Secrecy of an object, while UPGRADE lets a user increase the Integrity of an objecct. They also let users selectively audit file and global section access. quoted from the Guide to VMS Security Enhancement Service System Management manual: Secrecy: SEVMS implements a lattice security model but since SECURITY is already used to refer to other VMS features... SEVMS refers to the properties associated with the model as *secrecy*. The basic principal behind the lattice model is that no subject can read an object that is more classified than the subject (the sumple security property) and that no subject can write to an object less classified than the subject (the *-security property). Integrity Property: SEVMS also implements a lattice integrity model...(just substitute the word classified by integrity, and you get the idea) -- Portia Shao UUCP -- {allegra|ihnp4}!scgvaxd!engvax!portia Hughes Aircraft Co. ARPA -- portia@engvax.scg.hac.com or -- portia%engvax.uucp@oberon.usc.edu (213) 616-2635