Teaching SELinux in Introductory Information Assurance Classes

Author

Gregory, M.B. ; Reninger, A.S.

fYear

2009

fDate

5-8 Jan. 2009

Firstpage

1

Lastpage

8

Abstract

Students in introductory information assurance courses typically learn about the concepts of least privilege and mandatory and discretionary access control policies[1]. However, without hands-on exercises students are not likely to fully understand these fundamental security building blocks. In this paper we present classroom and lab exercises that use NSA´s Security Enhanced Linux (SELinux) to teach information assurance lessons. SELinux is included in Red Hat´s Fedora Linux distribution and in a variety of other Linux distributions. Although SELinux is growing in popularity, there is limited curriculum available to help orient students to its use. This paper describes lecture topics, in-class exercises and lab concepts that can be used to introduce students to SELinux and, through SELinux, to the fundamental concepts of least privilege and mandatory access control policies.

Keywords

Linux; computer science education; security of data; NSA Security Enhanced Linux; Red Hat Fedora Linux distribution; SELinux; discretionary access control policies; fundamental security; information assurance courses; introductory information assurance classes; least privilege; mandatory access control policies; teaching; Access control; Education; Information security; Kernel; Linux; Monitoring; National security; Operating systems; Permission; Writing;

fLanguage

English

Publisher

ieee

Conference_Titel

System Sciences, 2009. HICSS '09. 42nd Hawaii International Conference on

Conference_Location

Big Island, HI

ISSN

1530-1605

Print_ISBN

978-0-7695-3450-3

Type

conf

DOI

10.1109/HICSS.2009.419

Filename

4755795