1I believe that you are wrong. The RunAs tool doesn't show all the available TrustLevels when requested using the ShowTrustLevels argument. There are at least four TrustLevels available in Windows Vista+ : Untrusted = 0x1000, Constrained = 0x10000, NormalUser = 0x20000, FullyTrusted = 0x40000. You can verify this by running any app that shows you whether it has admin rights or not using RunAs and specifying the different TrustLevels I mentioned earlier. – Elmo – 2013-07-22T15:06:09.613

Check this for more details : http://stackoverflow.com/a/287072/864101 . Also programmers can specify 3 TrustLevels in the manifest file: asInvoker, requireAdministrator, highestAvailable

Sounds like I'm indeed partially wrong - there's no "clear" explanation for the trustlevel parameter. But anyway, I still do believe that it is related (or at least only partially related) to the UAC privilege levels (low, medium, high, system) or the application manifest requestedexecutionlevel. If you want to get the integrity label of a process, you have to enumerate its DACL. – Martin Binder – 2013-07-23T08:22:57.630

1The manifest entry requestedExecutionLevel specifies the Integrity Level the program is to run at. Prior to Windows 8 there were four levels used: System, High, Medium, Low. Process Explorer can be configured to show process integrity level. – David Marshall – 2013-07-28T15:03:09.673