If neither a UFID nor an EvaluatorClass is specified, the label value does not limit access to the objects with the label value applied and it becomes an informative marking.

If an authorized participant is specified using a UFID, whether the participant (user, user-defined group, or organization) is cleared for access to the objects with the label value applied is indicated by the UFID value.

If an evaluator class is specified, its isRestrictedBySecurityLabelValue method is called when the access rights of a participant are evaluated to determine whether the participant is cleared for access to objects with the label value applied.

If both a UFID and an evaluator class are specified, the UFID is only used if the isRestrictedBySecurityLabelValue method is not overridden in the evaluator class or if the method is overridden and the method calls super.isRestrictedBySecurityLabelValue and makes use of the result.