In [[CapabilityObject-basedcapability securitymodel|capability-based computer security]], a '''C-list''' is an [[array (data structure)|array]] of capabilities, usually associated with a [[process (computing)|process]] and maintained by the [[kernel (computeroperating sciencesystem)|kernel]]. The program running in the process does not manipulate capabilities directly, but refers to them via '''C-list indexes'''—integers indexing into the C-list.
The [[file descriptor]]|file descriptor table]] in [[Unix]] is an example of a C-list. Unix processes do not manipulate [[file descriptorsdescriptor]]s directly, but refer to them via file descriptor numbers, which are C-list indexes.
In the [[KeyKOS]] and [[EROS (microkernel)|EROS]] operating systems, a process's capability registers constitute a C-list.<ref>{{cite web|url=http://www.cap-lore.com/CapTheory/Glossary.html |title=Glossary |publisher=Cap-lore.com |date=2000-01-19 |accessdate=2019-07-08}}</ref>
