things to demo for wp4 - restricted records:
-
ATL and IMPSS
Security Level
column renamedAccess Classification
-
access classification on AO
- 3 levels and null (
Non-sensitive
,Sensitive
,Highly Sensitive
) - inherited by PR/DR
- bulk update
- 3 levels and null (
-
allow_security_administration
permission in Gateway- can be assigned by QSA admin
- allows assignee to assign access perms below
-
permissions for access in Gateway
- 2 levels (
allow_access_sensitive
,allow_request_highly_sensitive
) - and implicit third level (
non_sensitive_only
) - upon setting there is a message
- users can see items with equal or lower level classification
- 2 levels (
-
file issues and reading room requests
- DRs below
Highly Sensitive
can be downloaded instead of added to FIR Highly Sensitive
items can be added to FIR by users withallow_request_highly_sensitive
- users can see listing of FIR, FIP and FID that contain higher level items than they can see, but they can't click into them
- DRs below
-
audit trail for digital assets
- for access copies and AIPs
- in AS and Gateway