Chapter 3. Architecture
In this chapter
This chapter provides an overview of the SELinux design and its policy language. The SELinux architecture reflects its origins in secure microkernel research. It integrates itself into the kernel using the Linux Security Module (LSM) framework. This architecture is also extensible into user-space servers. The SELinux policy language is flexible, allowing an organization to implement a variety of security goals via mandatory access controls.
3.1 The Kernel Architecture
SELinux provides enhanced access control over all kernel resources. In its current form, SELinux is incorporated into the ...