PISECURITY_DESCRIPTOR - NtDoc
Native API online documentation, based on the System Informer
(formerly Process Hacker) phnt
headers
// ntifs.h
typedef struct _SECURITY_DESCRIPTOR {
UCHAR Revision;
UCHAR Sbz1;
SECURITY_DESCRIPTOR_CONTROL Control;
PSID Owner;
PSID Group;
PACL Sacl;
PACL Dacl;
} SECURITY_DESCRIPTOR, *PISECURITY_DESCRIPTOR;
View the official Windows Driver Kit DDI referenceNo description available.
The SECURITY_DESCRIPTOR structure contains the security information associated with an object. Drivers use this structure to set and query an object's security status.
Because the internal format of a security descriptor can vary, drivers are not to modify the SECURITY_DESCRIPTOR structure directly. For creating and manipulating a security descriptor, use the functions listed in the See Also section.
RevisionSpecifies the revision level of the security descriptor.
Sbz1Specifies a zero byte of padding that aligns the Revision member on a 16-bit boundary.
ControlThe control information of security descriptor. For more information, see SECURITY_DESCRIPTOR_CONTROL.
OwnerA pointer to an owner security identifier.
[!NOTE] This member might be invalid. You should use RtlGetOwnerSecurityDescriptor to get an owner security identifier.
GroupA pointer to a primary group security identifier.
[!NOTE] This member might be invalid. You should use RtlGetGroupSecurityDescriptor to get this member.
SaclA pointer to a system access control list (SACL).
[!NOTE] This member might be invalid. You should use RtlGetSaclSecurityDescriptor to get this member.
DaclA pointer to a discretionary access control list (DACL).
[!NOTE] This member might be invalid. You should use RtlGetDaclSecurityDescriptor to get this member.
A security descriptor includes information that specifies the following components of an object's security: