NSA's SELinux provides a set of security extensions to the Linux operating
system based on the mandatory Type Enforcement policy language, permitting
administrators to constrain the behavior of applications in a fine-grained
way. SEBSD is a port of FLASK and TE from Linux to run as a TrustedBSD
MAC Framework policy module on the FreeBSD operating system.
describes the FLASK/TE security technology, extensions made to the MAC
Framework to port the system to FreeBSD, and sample applications of the
SEBSD policy module to improve system security. This talk is appropriate
for system developers and system administrators interested in access
control policies and implementation.
speaker: Chris Vance
location: SITE G0103