Page 13-13, Figure 13-3, Label Evaluation for Read Access with COMPACCESS Privilege and Inverse Groups: This flow diagram illustrates the five criteria that must be satisfied to gain write access with inverse groups. Failing any criterion prohibits access. Criteria: 1. The data level must be less than or equal to the user level. 2. If the data does not have all the groups in the user label, it must have compartments. 3. If the user has groups and the data has all the groups that are in the user label, then the data must have either no compartments or the user must have all the compartments that the data has. 4. If the user has groups and the data does not have all the groups in the user label, the data must have compartments. 5. If the data has compartments, then the user must have all those compartments. Failing any of these criteria causes denial of access. In all other conditions, access is granted.