220.127.116.11 Conditional ACEs
Conditional ACEs are a form of CALLBACK ACEs with a special format of the application data. A Conditional ACE allows a conditional expression to be evaluated when an access check (as specified in section 18.104.22.168) is performed.<42>
The following ACE types may be formatted as a Conditional ACE:
A Conditional ACE is a CALLBACK ACE in which the first four bytes of the ApplicationData field in the CALLBACK ACE structure are set to the following byte value sequence: 0x61 0x72 0x74 0x78. The remaining contents of the ApplicationData field specify a conditional expression. The conditional expression language constructs and binary representation are defined in this section.