Towards Intuitive Tools for Managing SELinux: Hiding the Details but Retaining the Power

Authors: James Athey, Chris Ashworth, Don Miner, Frank Mayer
For: Tresys Technology, LLC

James Athey, Chris Ashworth, Don Miner, Frank Mayer, "Towards Intuitive Tools for Managing SELinux: Hiding the Details but Retaining the Power," to appear at the SELinux Symposium, Baltimore, MD, March 2007.

Abstract:
The details of the SELinux access control mechanisms lead to the perception that SELinux is too complex for non-expert users to manage. We present techniques that bridge the gap between the comprehensive, low-level SELinux access controls and the intuitive, high-level abstractions familiar to system administrators. These techniques shield the user from SELinux implementation details without sacrificing the power and flexibility of the SELinux policy language.

Tresys Technology, LLC
SELinux Symposium
Tresys Brickwall Security Suite