Clearances

Open in ChatGPT Explain this page with GPT Open in Claude Explain this page with Claude Open in Perplexity Search and explain this page
2 min read

Clearances are security labels such as HR or ACCOUNTING, attributed to Users, Synths, Memories and Knowledge Sources, controlling access to all resources within your SynthGrid.

Clearances are based on Lattice-based Access Control.

A user or synth needs any one matching clearance to access a resource. If you share at least one clearance in common, you have access.

%%{init: {'flowchart': {'defaultRenderer': 'elk'}}}%%
flowchart LR
    %% Users
    Alice((Alice
HR + FINANCE))
    Bob((Bob
SALES + IT))
    Carol((Carol
EXEC + HR +
FINANCE + SALES))
    Admin((Admin
ADMIN))

    %% Synths
    HRS[HR Synth
HR + FINANCE]
    FINS[Finance Synth
FINANCE]
    SALES[Sales Synth
SALES]
    ITS[IT Synth
IT]
    EXECS[Executive Synth
EXEC + FINANCE]

    %% Memories
    HRM[HR Memories]
    FINM[Finance Memories]
    SALESM[Sales Memories]
    ITM[IT Memories]
    EXECM[Executive Memories]
    PRIV[Personal Notes
Alice only]

    %% Alice — has HR and FINANCE, matches any synth with either
    Alice --"`HR`"--> HRS
    Alice --"`FINANCE`"--> FINS
    Alice --"`FINANCE`"--> EXECS
    HRS --> HRM
    FINS --> FINM
    EXECS --> EXECM

    %% Bob — has SALES and IT
    Bob --"`SALES`"--> SALES
    Bob --"`IT`"--> ITS
    SALES --> SALESM
    ITS --> ITM

    %% Carol — has EXEC, HR, FINANCE, SALES
    Carol =="EXEC"==> EXECS
    Carol =="HR"==> HRS
    Carol =="FINANCE"==> FINS
    Carol =="SALES"==> SALES

    %% Admin — sees everything with a named clearance
    Admin -."`ADMIN`".-> HRS
    Admin -."`ADMIN`".-> FINS
    Admin -."`ADMIN`".-> SALES
    Admin -."`ADMIN`".-> ITS
    Admin -."`ADMIN`".-> EXECS
    Admin -."blocked".-> PRIV

    %% Alice's personal notes
    Alice --"`personal`"--> PRIV

    style Alice fill:#f9f,stroke:#333
    style Bob fill:#bbf,stroke:#333
    style Carol fill:#fcf,stroke:#333
    style Admin fill:#ffa,stroke:#333

    style HRS fill:#f9f,stroke:#333
    style FINS fill:#f9f,stroke:#333
    style SALES fill:#bbf,stroke:#333
    style ITS fill:#bbf,stroke:#333
    style EXECS fill:#fcf,stroke:#333
    style PRIV fill:#ddd,stroke:#999

Table of Access Requirements

For a User or Synth to access a resource, they need any one matching clearance — not all of them.

Clearances required
Another UserAt least one clearance in common
SynthAt least one clearance in common
MemoryAt least one clearance in common
Knowledge SourceAt least one clearance in common

Administrator Access

Administrators can access all Users, Synths, and Memories across the system regardless of clearance, with one exception: resources tagged exclusively with personal clearances remain private, even to administrators.

This ensures administrators have full visibility to manage the system, while personal resources stay personal.

How to acquire clearances

Clearances are centrally assigned by System Administrators.

You can ask your system administrator to create, update, change or edit clearance levels at any time. Clearance levels allow for your SynthGrid to accurately reflect the knowledge boundaries within your organization, restricting access to specific users and Synths within specific roles.