翻訳と辞書
Words near each other
・ Security characteristic line
・ Security checkpoint
・ Security clearance
・ Security Commission
・ Security community
・ Security Content Automation Protocol
・ Security Control of Air Traffic and Air Navigation Aids
・ Security controls
・ Security convergence
・ Security Council (disambiguation)
・ Security Council (Japan)
・ Security Council of Russia
・ Security Council of the Soviet Union
・ Security culture
・ Security deposit
Security descriptor
・ Security Descriptor Definition Language
・ Security Detachment Iraq (Australia)
・ Security detail
・ Security Device Event Exchange
・ Security Dialogue
・ Security dilemma
・ Security Dilemma in Chechnya
・ Security Division (Wehrmacht)
・ Security domain
・ Security engineering
・ Security event manager
・ Security First Network Bank
・ Security for costs
・ Security for the 2012 Summer Olympics


Dictionary Lists
翻訳と辞書 辞書検索 [ 開発暫定版 ]
スポンサード リンク

Security descriptor : ウィキペディア英語版
Security descriptor

Security descriptors are data structures of security information for ''securable'' Windows objects, that is objects that can be identified by a unique name. Security descriptors can be associated with any named objects, including files, folders, shares, registry keys, processes, threads, named pipes, services, job objects and other resources.
Security descriptors contain discretionary access control lists (DACLs) that contain access control entries (ACEs) that grant and deny access to trustees such as users or groups. They also contain a system access control list (SACLs) that control auditing of object access.〔(【引用サイトリンク】title=What Are Security Descriptors and Access Control Lists? )〕 ACEs may be explicitly applied to an object or inherited from a parent object. The order of ACEs in an ACL is important, with access denied ACEs appearing higher in the order than ACEs that grant access. Security descriptors also contain the object owner.
Mandatory Integrity Control is implemented through a new type of ACE on a security descriptor.〔https://msdn.microsoft.com/en-us/library/bb625957.aspx What is the Windows Integrity Mechanism?〕
Files and folder permissions can be edited by various tools including Windows Explorer, WMI, command line tools like Cacls, XCacls, ICacls, SubInACL,〔(SubInACL home page )〕 the freeware Win32 console FILEACL,〔(FILEACL home page )〕〔 〕 the free software utility SetACL, and other utilities. To edit a security descriptor, a user needs WRITE_DAC permissions to the object, a permission that is usually delegated by default to administrators and the object's owner.
==See also==

*
* Information technology security audit
* Authorization
* Computer security
* Information security
* Token (Windows NT architecture)
* Windows SID
* SDDL

抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)
ウィキペディアで「Security descriptor」の詳細全文を読む



スポンサード リンク
翻訳と辞書 : 翻訳のためのインターネットリソース

Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.