Kernel Security for 2.8 - Kernel Summit 2004
Upcoming SlideShare
Loading in...5
×
 

Like this? Share it with your network

Share

Kernel Security for 2.8 - Kernel Summit 2004

on

  • 1,839 views

"Kernel Security for 2.8", presentation given at the Linux Kernel Summit in Ottawa in 2004.

"Kernel Security for 2.8", presentation given at the Linux Kernel Summit in Ottawa in 2004.

Note that this was when we were still expecting to have versions 2.7/2.8.

Statistics

Views

Total Views
1,839
Views on SlideShare
1,839
Embed Views
0

Actions

Likes
0
Downloads
11
Comments
0

0 Embeds 0

No embeds

Accessibility

Upload Details

Uploaded via as Adobe PDF

Usage Rights

CC Attribution-ShareAlike LicenseCC Attribution-ShareAlike License

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Kernel Security for 2.8 - Kernel Summit 2004 Presentation Transcript

  • 1. Kernel Security for 2.8 Linux Kernel Summit Ottawa 2004 James Morris, Red Hat
  • 2. Current Status Several security features in 2.6: ● LSM ● Crypto API (software) ● Cryptoloop ● dm-crypt ● IPSec ● SELinux (MAC, RBAC) ● NX ● Audit Framework ● Syscall Auditing Discussion?
  • 3. Potential Future Directions (2.7+) ● SELinux: ● MLS (multilevel security) ● Labeled networking ● Integration with resource management ● NFSv4 integration ● Virtualization: ● Increased isolation ● Polyinstantiation ● Hardware Crypto API ● Kernel keyring management ● More LSM applications? ● Continued refinement of Netfilter ● Signed modules (2.6?) ● Signed binaries ● Exec-shield (2.6?) ● TPM ● LT ● Better capabilities (Chris Wright) ● Separate out DAC (Chris Wright)