Title :
Teaching SELinux in Introductory Information Assurance Classes
Author :
Gregory, M.B. ; Reninger, A.S.
Abstract :
Students in introductory information assurance courses typically learn about the concepts of least privilege and mandatory and discretionary access control policies[1]. However, without hands-on exercises students are not likely to fully understand these fundamental security building blocks. In this paper we present classroom and lab exercises that use NSA´s Security Enhanced Linux (SELinux) to teach information assurance lessons. SELinux is included in Red Hat´s Fedora Linux distribution and in a variety of other Linux distributions. Although SELinux is growing in popularity, there is limited curriculum available to help orient students to its use. This paper describes lecture topics, in-class exercises and lab concepts that can be used to introduce students to SELinux and, through SELinux, to the fundamental concepts of least privilege and mandatory access control policies.
Keywords :
Linux; computer science education; security of data; NSA Security Enhanced Linux; Red Hat Fedora Linux distribution; SELinux; discretionary access control policies; fundamental security; information assurance courses; introductory information assurance classes; least privilege; mandatory access control policies; teaching; Access control; Education; Information security; Kernel; Linux; Monitoring; National security; Operating systems; Permission; Writing;
Conference_Titel :
System Sciences, 2009. HICSS '09. 42nd Hawaii International Conference on
Conference_Location :
Big Island, HI
Print_ISBN :
978-0-7695-3450-3
DOI :
10.1109/HICSS.2009.419
