z/OS Security Server RACF Security Administrator's Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Security classification of users and data

z/OS Security Server RACF Security Administrator's Guide
SA23-2289-00

Security classification of users and data allows installations to impose additional access controls on sensitive resources. Each user and each resource can have a security classification in its profile. You can choose among the following:
  • Security levels, security categories, or both
  • You can use security labels, which are a combination of security levels and security categories, and are easier to maintain

A security level (SECLEVEL) is an installation-defined name that corresponds to a numerical security level (the higher the number, the higher the security level).

A security category (CATEGORY) is an installation-defined name that corresponds to a department or an area within an organization in which the users have similar security requirements.

A security label (SECLABEL) is an installation-defined name that corresponds to a security level and zero or more security categories.

This topic discusses security levels and security categories first. Security labels are discussed later (see Understanding security labels).

Parent topic: Classifying users and data

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014