Planning the Compartment Values and Combination Constraints in a Worksheet
The following table defines the relationships between words and classifications. The relationships were determined by moving things around on the planning board in Figure 6–5. PUBLIC and INTERNAL_USE_ONLY can never appear in a label with any compartment. NEED_TO_KNOW can appear in a label with any of the compartments or all of the compartments.
Table 6–3 Compartments and User Accreditation Range Combinations Planner|
Classification |
Compartment Name/ sname/ Bit |
Combination Constraints |
|---|---|---|
|
PUBLIC |
|
PUBLIC only valid combinations |
|
INTERNAL_USE_ONLY |
|
INTERNAL_USE_ONLY only valid combinations |
|
NEED_TO_KNOW |
SYSTEM ADMINISTRATION/ SYSADM/ 19 |
NEED_TO_KNOW all combinations valid |
|
|
MANUFACTURING/ MANU/ 18 |
|
|
|
ENGINEERING/ ENG/ 17 20 |
|
|
|
HUMAN RESOURCES/ HR/ 16 |
|
|
|
MARKETING/ MKTG/ 15 20 |
|
|
|
LEGAL/ LEGAL/ 14 |
|
|
|
FINANCE/ FINANCE/ 13 |
|
|
|
SALES/ SALES/ 12 |
|
|
|
EXECUTIVE MANAGEMENT GROUP/ EMGT/ 11 |
|
|
|
ALL_DEPARTMENTS/ ALL/ 11-20 |
|
|
REGISTERED |
|
REGISTERED only valid combinations |
The security administrator uses the following table to keep track of which bits have been used for compartments.
Table 6–4 Compartment Bit Tracking Table|
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
|
- © 2010, Oracle Corporation and/or its affiliates