The owner and eventual co-owner (the terms are explained in the following section) can specify who may access the job variable and under what conditions for every job variable. This can prevent unauthorized reading of a job variable as well as unauthorized changes to a job variable.

The following standard access control protection attributes can be defined with the JV product alone:

• Access only for the owner or for all user

• General read or write protection

• General retention period

• Read and write passwords

Significantly finer settings for the access privileges are possible using the SECOS product or with its GUARDS, GUARDDEF (default protection) and GUARDCOO (co-owner protection) modules:

• Specify read and write privileges for job variables with the help of individual access profiles (guards) for every ID.

• Specify administration privileges for job variables: Co-owners of job variables can be specified with GUARDCOO.

• Specification of default values for protection attributes of job variables with the “default protection” function.

These privileges can be assigned independent of each other to any number of user IDs or user groups.

Only the job that created the temporary job variable or systems support can access a temporary job variable. No protection attributes other than the default settings for CREATE-JV can be assigned for temporary job variables.