All Linux processes, except for the process 0, are running image of an executable file and are owned by a user. Therefore Process ADs (Subsection 4.3.7) have to reflect both User AD privileges (Subsection 4.3.6) and Executable File AD privileges (Subsection 4.3.5). Furthermore, Process ADs have to be inherited through execution chains and through the changes of process ownership in a manner that obeys the principle of Least Privilege (Subsection 4.3.8).