[comp.os.vms] upgrade/downgrade priv

PORTIA@ASL1.ASL.hac.COM (Portia Shao EO/E52/D222 616-2635) (07/17/88)

The DOWNGRADE and UPGRADE privileges are used by the VMS Security Enhancement
Service (SEVMS).

DOWNGRADE lets a user decrease the Secrecy of an object, while UPGRADE lets
a user increase the Integrity of an objecct. They also let users selectively
audit file and global section access.

quoted from the Guide to VMS Security Enhancement Service System Management
manual:

Secrecy: SEVMS implements a lattice security model but since SECURITY is
already used to refer to other VMS features... SEVMS refers to the properties
associated with the model as *secrecy*. The basic principal behind the lattice
model is that no subject can read an object that is more classified than the
subject (the sumple security property) and that no subject can write to an 
object less classified than the subject (the *-security property).

Integrity Property: SEVMS also implements a lattice integrity model...(just
substitute the word classified by integrity, and you get the idea)


-- Portia Shao              UUCP -- {allegra|ihnp4}!scgvaxd!engvax!portia
   Hughes Aircraft Co.	    ARPA -- portia@engvax.scg.hac.com
			     or  -- portia%engvax.uucp@oberon.usc.edu
   (213) 616-2635