This Security Monitor feature provides security protection for objects at the time they are created.
This can be accomplished:
By enforcing a restrictive default access control on newly created
files.
By requiring the user to explicitly specify the desired access
controls on the file when requesting its creation.
In either case, absolutely no unauthorized access to newly created files
is allowed.
When set, the Maximum Protection feature enforces restrictive access to
newly created files. The standards for access to newly created files are:
When the feature is set, an file created without an associated ACD
can be accessed only by its creator, SM, AM, and no one else.
When a file is associated with an ACD, the ACD rules, regardless
of the status of the Maximum Protection feature.
When the feature is not enabled, and no ACD is present, file access can
be controlled using the :ALTSEC command.