The document discusses directions for improving SELinux networking capabilities. It outlines ideas such as using Netfilter/iptables for IP packet controls instead of the current implementation, leveraging IPsec to label security associations rather than individual packets, extending SELinux policy to the distributed environment, and developing mechanisms for distributing and synchronizing policy across security realms. Long term trends toward high assurance distributed computing are also noted.