At load time, the code access security system examines all policy levels and the resulting permission grant is the intersection of all allowed permissions in each level.