Overview
Explore the evolution of Linux security module interfaces in this 45-minute conference talk by Casey Schaufler from The Smack Project. Delve into the challenges posed by traditional filesystem interfaces for administration and process attribute manipulation in Linux security modules. Examine how different modules using varied interfaces for similar information can lead to application issues. Learn about the introduction of new system calls as a solution to these problems. Understand the advantages of system calls over filesystem interfaces, and get acquainted with the initial set of system calls being implemented. Gain insights into the challenges encountered during this transition and discuss the implications for applications and future directions of Linux Security Modules (LSM).
Syllabus
System Calls for the Linux Security Module Infrastructure - Casey Schaufler, The Smack Project
Taught by
Linux Foundation