Teaching SELinux in Introductory Information Assurance Classes

Teaching SELinux in Introductory Information Assurance Classes

Students in introductory information assurance courses typically learn about the concepts of least privilege and mandatory and discretionary access control policies[1]. However, without hands-on exercises students are not likely to fully understand these fundamental security building blocks. In this...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Gregory, M.B., Reninger, A.S.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Access control
Education
Information security
Kernel
Linux
Monitoring
National security
Operating systems
Permission
Writing
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 8
container_issue
container_start_page 1
container_title
container_volume
creator Gregory, M.B.
Reninger, A.S.
description Students in introductory information assurance courses typically learn about the concepts of least privilege and mandatory and discretionary access control policies[1]. However, without hands-on exercises students are not likely to fully understand these fundamental security building blocks. In this paper we present classroom and lab exercises that use NSA's Security Enhanced Linux (SELinux) to teach information assurance lessons. SELinux is included in Red Hat's Fedora Linux distribution and in a variety of other Linux distributions. Although SELinux is growing in popularity, there is limited curriculum available to help orient students to its use. This paper describes lecture topics, in-class exercises and lab concepts that can be used to introduce students to SELinux and, through SELinux, to the fundamental concepts of least privilege and mandatory access control policies.
doi_str_mv 10.1109/HICSS.2009.419
format Conference Proceeding
fullrecord <record><control><sourceid>ieee_6IE</sourceid><recordid>TN_cdi_ieee_primary_4755795</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>4755795</ieee_id><sourcerecordid>4755795</sourcerecordid><originalsourceid>FETCH-LOGICAL-i90t-fb9dff1178f31d5f4939a98b441bed8ee7762240d72f173b3b16237002a02be03</originalsourceid><addsrcrecordid>eNotj81KxDAYRYM_YB1n68ZNX6D1-_LbbIShjE6h4KLdD2mbaGSmlaQF5-0t6OpyNodzCXlEyBFBPx-qsmlyCqBzjvqKJFQomslC0muy1aoAJbVgXAC7IQkKBhlKEHfkPsYvAAocZUJeWmv6Tz9-pM2-9uPyk_oxrcY5TMPSz1O4rOCmcDazn8Z0F-MSzNjbtDyZGG18ILfOnKLd_u-GtK_7tjxk9ftbVe7qzGuYM9fpwTlEVTiGg3BcM2100XGOnR0Ka5WSlHIYFHWoWMc6lJSpNdIA7SywDXn603pr7fE7-LMJlyNXQqj14i9u20mk</addsrcrecordid><sourcetype>Publisher</sourcetype><iscdi>true</iscdi><recordtype>conference_proceeding</recordtype></control><display><type>conference_proceeding</type><title>Teaching SELinux in Introductory Information Assurance Classes</title><source>IEEE Electronic Library (IEL) Conference Proceedings</source><creator>Gregory, M.B. ; Reninger, A.S.</creator><creatorcontrib>Gregory, M.B. ; Reninger, A.S.</creatorcontrib><description>Students in introductory information assurance courses typically learn about the concepts of least privilege and mandatory and discretionary access control policies[1]. However, without hands-on exercises students are not likely to fully understand these fundamental security building blocks. In this paper we present classroom and lab exercises that use NSA's Security Enhanced Linux (SELinux) to teach information assurance lessons. SELinux is included in Red Hat's Fedora Linux distribution and in a variety of other Linux distributions. Although SELinux is growing in popularity, there is limited curriculum available to help orient students to its use. This paper describes lecture topics, in-class exercises and lab concepts that can be used to introduce students to SELinux and, through SELinux, to the fundamental concepts of least privilege and mandatory access control policies.</description><identifier>ISSN: 1530-1605</identifier><identifier>ISBN: 9780769534503</identifier><identifier>ISBN: 0769534503</identifier><identifier>EISSN: 2572-6862</identifier><identifier>DOI: 10.1109/HICSS.2009.419</identifier><language>eng</language><publisher>IEEE</publisher><subject>Access control ; Education ; Information security ; Kernel ; Linux ; Monitoring ; National security ; Operating systems ; Permission ; Writing</subject><ispartof>2009 42nd Hawaii International Conference on System Sciences, 2009, p.1-8</ispartof><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/4755795$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>309,310,777,781,786,787,2052,27906,54901</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/4755795$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Gregory, M.B.</creatorcontrib><creatorcontrib>Reninger, A.S.</creatorcontrib><title>Teaching SELinux in Introductory Information Assurance Classes</title><title>2009 42nd Hawaii International Conference on System Sciences</title><addtitle>HICSS</addtitle><description>Students in introductory information assurance courses typically learn about the concepts of least privilege and mandatory and discretionary access control policies[1]. However, without hands-on exercises students are not likely to fully understand these fundamental security building blocks. In this paper we present classroom and lab exercises that use NSA's Security Enhanced Linux (SELinux) to teach information assurance lessons. SELinux is included in Red Hat's Fedora Linux distribution and in a variety of other Linux distributions. Although SELinux is growing in popularity, there is limited curriculum available to help orient students to its use. This paper describes lecture topics, in-class exercises and lab concepts that can be used to introduce students to SELinux and, through SELinux, to the fundamental concepts of least privilege and mandatory access control policies.</description><subject>Access control</subject><subject>Education</subject><subject>Information security</subject><subject>Kernel</subject><subject>Linux</subject><subject>Monitoring</subject><subject>National security</subject><subject>Operating systems</subject><subject>Permission</subject><subject>Writing</subject><issn>1530-1605</issn><issn>2572-6862</issn><isbn>9780769534503</isbn><isbn>0769534503</isbn><fulltext>true</fulltext><rsrctype>conference_proceeding</rsrctype><creationdate>2009</creationdate><recordtype>conference_proceeding</recordtype><sourceid>6IE</sourceid><sourceid>RIE</sourceid><recordid>eNotj81KxDAYRYM_YB1n68ZNX6D1-_LbbIShjE6h4KLdD2mbaGSmlaQF5-0t6OpyNodzCXlEyBFBPx-qsmlyCqBzjvqKJFQomslC0muy1aoAJbVgXAC7IQkKBhlKEHfkPsYvAAocZUJeWmv6Tz9-pM2-9uPyk_oxrcY5TMPSz1O4rOCmcDazn8Z0F-MSzNjbtDyZGG18ILfOnKLd_u-GtK_7tjxk9ftbVe7qzGuYM9fpwTlEVTiGg3BcM2100XGOnR0Ka5WSlHIYFHWoWMc6lJSpNdIA7SywDXn603pr7fE7-LMJlyNXQqj14i9u20mk</recordid><startdate>200901</startdate><enddate>200901</enddate><creator>Gregory, M.B.</creator><creator>Reninger, A.S.</creator><general>IEEE</general><scope>6IE</scope><scope>6IL</scope><scope>CBEJK</scope><scope>RIE</scope><scope>RIL</scope></search><sort><creationdate>200901</creationdate><title>Teaching SELinux in Introductory Information Assurance Classes</title><author>Gregory, M.B. ; Reninger, A.S.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-i90t-fb9dff1178f31d5f4939a98b441bed8ee7762240d72f173b3b16237002a02be03</frbrgroupid><rsrctype>conference_proceedings</rsrctype><prefilter>conference_proceedings</prefilter><language>eng</language><creationdate>2009</creationdate><topic>Access control</topic><topic>Education</topic><topic>Information security</topic><topic>Kernel</topic><topic>Linux</topic><topic>Monitoring</topic><topic>National security</topic><topic>Operating systems</topic><topic>Permission</topic><topic>Writing</topic><toplevel>online_resources</toplevel><creatorcontrib>Gregory, M.B.</creatorcontrib><creatorcontrib>Reninger, A.S.</creatorcontrib><collection>IEEE Electronic Library (IEL) Conference Proceedings</collection><collection>IEEE Proceedings Order Plan All Online (POP All Online) 1998-present by volume</collection><collection>IEEE Xplore All Conference Proceedings</collection><collection>IEEE Electronic Library (IEL)</collection><collection>IEEE Proceedings Order Plans (POP All) 1998-Present</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Gregory, M.B.</au><au>Reninger, A.S.</au><format>book</format><genre>proceeding</genre><ristype>CONF</ristype><atitle>Teaching SELinux in Introductory Information Assurance Classes</atitle><btitle>2009 42nd Hawaii International Conference on System Sciences</btitle><stitle>HICSS</stitle><date>2009-01</date><risdate>2009</risdate><spage>1</spage><epage>8</epage><pages>1-8</pages><issn>1530-1605</issn><eissn>2572-6862</eissn><isbn>9780769534503</isbn><isbn>0769534503</isbn><abstract>Students in introductory information assurance courses typically learn about the concepts of least privilege and mandatory and discretionary access control policies[1]. However, without hands-on exercises students are not likely to fully understand these fundamental security building blocks. In this paper we present classroom and lab exercises that use NSA's Security Enhanced Linux (SELinux) to teach information assurance lessons. SELinux is included in Red Hat's Fedora Linux distribution and in a variety of other Linux distributions. Although SELinux is growing in popularity, there is limited curriculum available to help orient students to its use. This paper describes lecture topics, in-class exercises and lab concepts that can be used to introduce students to SELinux and, through SELinux, to the fundamental concepts of least privilege and mandatory access control policies.</abstract><pub>IEEE</pub><doi>10.1109/HICSS.2009.419</doi><tpages>8</tpages></addata></record>
fulltext fulltext_linktorsrc
identifier ISSN: 1530-1605
ispartof 2009 42nd Hawaii International Conference on System Sciences, 2009, p.1-8
issn 1530-1605
2572-6862
language eng
recordid cdi_ieee_primary_4755795
source IEEE Electronic Library (IEL) Conference Proceedings
subjects Access control
Education
Information security
Kernel
Linux
Monitoring
National security
Operating systems
Permission
Writing
title Teaching SELinux in Introductory Information Assurance Classes
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-18T14%3A07%3A56IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-ieee_6IE&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=proceeding&rft.atitle=Teaching%20SELinux%20in%20Introductory%20Information%20Assurance%20Classes&rft.btitle=2009%2042nd%20Hawaii%20International%20Conference%20on%20System%20Sciences&rft.au=Gregory,%20M.B.&rft.date=2009-01&rft.spage=1&rft.epage=8&rft.pages=1-8&rft.issn=1530-1605&rft.eissn=2572-6862&rft.isbn=9780769534503&rft.isbn_list=0769534503&rft_id=info:doi/10.1109/HICSS.2009.419&rft_dat=%3Cieee_6IE%3E4755795%3C/ieee_6IE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=4755795&rfr_iscdi=true