O'Reilly logo

SELinux by Example: Using Security Enhanced Linux by David Caplan, Karl MacMillan, Frank Mayer

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 8. Multilevel Security

In this chapter

• 8.1 Multilevel Security Constraints

• 8.2 Security Contexts with MLS

• 8.3 MLS Constraints

• 8.4 Other Impacts of MLS

• 8.5 Summary

• Exercises

In recent enhancements to SELinux, the constraint feature has been extended to implement an optional multilevel security (MLS) policy. MLS is another form of mandatory access control, which is built upon type enforcement (TE). In this chapter, we explore the optional MLS policy features.

8.1 Multilevel Security Constraints

MLS is another form of mandatory access control that is applicable to some security problems, especially those associated with government-classified data control. Much of the early computer security research was driven by the goal of ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required