Executable File Capabilities are implemented as extended attributes (Section 5.3) of executable files. System administrator can manipulate the attributes as part of the LinSec mandatory security policy configuration process (Section 5.4). Executable File Capabilities are retrieved from extended attributes of a particular executable file, when they are needed, by the Capability Inheritance Algorithm (Subsection 5.8.4).