windows访问控制列表ACL

最新推荐文章于 2024-05-13 16:58:51 发布

RiskAI

最新推荐文章于 2024-05-13 16:58:51 发布

阅读量7.6k

点赞数

文章标签： windows ACL SD 访问控制列表安全描述符

本文链接：https://blog.csdn.net/jhsword/article/details/95953730

版权

文章目录

术语
定义
分类
- DACL
- SACL
安全对象(so) & 安全描述符(sd)

windows访问控制列表 --ACL(Access Control List)

关于授权(authorization) 与访问控制（Acess Control）

微软官网详细介绍：

术语

ACL: 访问控制列表（ACL，Access Control Lists）。
ACE: 访问控制项（ACE，Access Control ITEM）
SO : 安全对象 (securable object)
SD : 安全描述符 (securable Descriptors)
SID : 安全标识符 (securable identifiers)
ADSI : Active Directory服务接口(service interface)

定义

ACL是一个windows中的表示用户（组）权限的列表。

ACL与ACE

安全对象(so) & 安全描述符(sd)

安全对象

安全对象(Securable Object): 微软官网解释

以下引用内容来自微软官网：

A securable object is an object that can have a security descriptor. All named Windows objects are securable. Some unnamed objects, such as process and thread objects, can have security descriptors too. For most securable objects, you can specify an object’s security descriptor in the function call that creates the object. For example, you can specify a security descriptor in the CreateFile and CreateProcess functions.

In addition, the Windows security functions enable you to get and set the security information for securable objects created on operating systems other than Windows. The Windows security functions also provide support for using security descriptors with private, application-defined objects. For more information about private securable objects, see Client/Server Access Control.

Each type of securable object defines its own set of specific access rights and its own mapping of generic access rights. For information about the specific and generic access rights for each type of securable object, see the overvie

最低0.47元/天解锁文章

RiskAI

关注

0
点赞
踩
3

收藏

觉得还不错? 一键收藏
0
评论
windows访问控制列表ACL

文章目录术语定义分类DACLSACL安全对象(so) & 安全描述符(sd)安全对象安全描述符SECURITY_DESCRIPTOR结构体windows访问控制列表 --ACL(Access Control List)关于授权(authorization) 与访问控制（Acess Control）微软官网详细介绍：https://docs.microsoft.com/zh-cn...
复制链接

扫一扫