diff --git a/private/access_vectors b/private/access_vectors
index c4f13bb2c7673f6897a7041e6ae99af01c1b4ae4..dcd86c28e34db23dfa4982aa9deb1c9c27b4e37d 100644
--- a/private/access_vectors
+++ b/private/access_vectors
@@ -668,6 +668,20 @@ class service_manager
 	list
 }
 
+class hwservice_manager
+{
+	add
+	find
+	list
+}
+
+class vndservice_manager
+{
+	add
+	find
+	list
+}
+
 class keystore_key
 {
 	get_state
diff --git a/private/security_classes b/private/security_classes
index a202c5db69174d514bb4bb1ded95bcca494fb012..5685bd6f8f7bd9fcb2553059b3c80603fef7e0db 100644
--- a/private/security_classes
+++ b/private/security_classes
@@ -134,6 +134,12 @@ class property_service          # userspace
 # Service manager
 class service_manager           # userspace
 
+# hardware service manager      # userspace
+class hwservice_manager
+
+# vendor service manager        # userspace
+class vndservice_manager
+
 # Keystore Key
 class keystore_key              # userspace
 
diff --git a/public/attributes b/public/attributes
index e575d21d4794a1aaa345c76dbeb93a2289d8aeba..da399c9fa1b21c4a1eda2b3a3bcf46b344929316 100644
--- a/public/attributes
+++ b/public/attributes
@@ -95,11 +95,18 @@ attribute ephemeral_app_api_service;
 # services which export only system_api
 attribute system_api_service;
 
-# All types used for services managed by service_manager.
+# All types used for services managed by servicemanager.
 # On change, update CHECK_SC_ASSERT_ATTRS
 # definition in tools/checkfc.c.
 attribute service_manager_type;
 
+# All types used for services managed by hwservicemanager
+attribute hwservice_manager_type;
+
+# All types used for services managed by vndservicemanager
+attribute vndservice_manager_type;
+
+
 # All domains that can override MLS restrictions.
 # i.e. processes that can read up and write down.
 attribute mlstrustedsubject;