Security is the process of controlling access to resources, based on Windows user credentials and permissions.
Permissions are rules associated with a local resource or a resource shared on a network, such as a file, directory, or printer; permissions can be granted to groups, global groups, and even individual Windows users. When you grant Windows permissions, you specify the level of access for groups and users.
Operating system or file system security checks the permissions each time that a Windows user interacts with the shared resource to determine whether that user has the necessary permissions. For example, if that user is attempting to save a file in a folder, that user must have Write permissions for that folder. Sharing makes Windows resources, such as folders and printers, available to others. Shared resource permissions restrict a shared resource's availability over the network to only certain Windows users. The administrator of a shared folder grants permissions to Windows users to enable remote access to the folder and subfolders. Sharing of Windows resources is different from sharing files and projects in VSS.
Rights in VSS specify which VSS users have access to a specific VSS project. There are four levels of user access rights in VSS: read, check out/check in, add/rename/delete, and destroy. The default level for new users of the database can be specified.
Assignments in VSS specify which VSS projects a specified VSS user has access to.
VSS database folder is the Windows folder that contains the Srcsafe.ini file for the database and other VSS folders such as Data and Users.