diff --git a/tracking_denials/sced.te b/tracking_denials/sced.te
deleted file mode 100644
index 00243ca3..00000000
--- a/tracking_denials/sced.te
+++ /dev/null
@@ -1,4 +0,0 @@
-# b/171760846
-dontaudit sced hidl_base_hwservice:hwservice_manager { add };
-dontaudit sced hal_vendor_oem_hwservice:hwservice_manager { add };
-dontaudit sced hal_vendor_oem_hwservice:hwservice_manager { find };
diff --git a/whitechapel/vendor/google/dmd.te b/whitechapel/vendor/google/dmd.te
index 4dff6f71..4f9cef1d 100644
--- a/whitechapel/vendor/google/dmd.te
+++ b/whitechapel/vendor/google/dmd.te
@@ -25,7 +25,8 @@ get_prop(dmd, vendor_persist_config_default_prop)
 
 # Grant to access hwservice manager
 get_prop(dmd, hwservicemanager_prop)
-add_hwservice(dmd, hal_vendor_oem_hwservice)
+allow dmd hidl_base_hwservice:hwservice_manager add;
+allow dmd hal_vendor_oem_hwservice:hwservice_manager { add find };
 binder_call(dmd, hwservicemanager)
 binder_call(dmd, modem_diagnostic_app)
 binder_call(dmd, modem_logging_control)
diff --git a/whitechapel/vendor/google/sced.te b/whitechapel/vendor/google/sced.te
index 52c2b2b6..827ac057 100644
--- a/whitechapel/vendor/google/sced.te
+++ b/whitechapel/vendor/google/sced.te
@@ -2,9 +2,22 @@ type sced, domain;
 type sced_exec, vendor_file_type, exec_type, file_type;
 init_daemon_domain(sced)
 
+typeattribute sced vendor_executes_system_violators;
+
 userdebug_or_eng(`
 hwbinder_use(sced)
 binder_call(sced, dmd)
+binder_call(sced, vendor_telephony_app)
 
 get_prop(sced, hwservicemanager_prop)
-')
\ No newline at end of file
+allow sced self:packet_socket create_socket_perms_no_ioctl;
+
+allow sced self:capability net_raw;
+allow sced shell_exec:file rx_file_perms;
+allow sced tcpdump_exec:file rx_file_perms;
+allow sced vendor_shell_exec:file x_file_perms;
+allow sced vendor_slog_file:dir create_dir_perms;
+allow sced vendor_slog_file:file create_file_perms;
+allow sced hidl_base_hwservice:hwservice_manager add;
+allow sced hal_vendor_oem_hwservice:hwservice_manager { add find };
+')
diff --git a/whitechapel/vendor/google/vendor_telephony_app.te b/whitechapel/vendor/google/vendor_telephony_app.te
index 65b12869..5b4c4604 100644
--- a/whitechapel/vendor/google/vendor_telephony_app.te
+++ b/whitechapel/vendor/google/vendor_telephony_app.te
@@ -16,3 +16,4 @@ allow vendor_telephony_app vendor_slog_file:file create_file_perms;
 allow vendor_telephony_app app_api_service:service_manager find;
 allow vendor_telephony_app hal_vendor_oem_hwservice:hwservice_manager find;
 binder_call(vendor_telephony_app, dmd)
+binder_call(vendor_telephony_app, sced)