Explore the inner workings of Linux Security Modules (LSM) in this comprehensive 52-minute conference talk by Vandana Salve from Prasme Systems. Delve into the importance of Linux security modules, understand the LSM Framework's architecture, and examine security data fields within kernel objects. Learn about LSM security data structures and hooks, and discover how LSMs integrate into the Linux kernel. Investigate LSM kernel configurations, code integration, and the flow of system calls. Gain insights into various LSM hooks, including file system, super_block, file, task, IPC, network, and module hooks. Conclude with an overview of APPARMOR and Lockdown, enhancing your understanding of Linux security mechanisms.
Overview
Syllabus
Intro
Why Linux security module
Introduction to Linux security module
Overview of LSM Framework
Architecture of LSM
LSM Security data fields
Security data fields inside kernel objects
LSM security data structures and hooks
Integration of an LSM into the linux kernel
LSM kernel configurations
LSM Code integration with the Kernel
Kernel calling LSM Hooks
Flow of open() system call
LSM file system hooks
LSM super_block hooks
LSM file hooks
LSM Task hooks
LSM IPC hooks
LSM Network hooks
LSM Module & System hooks
APPARMOR
Lockdown
Conclusion
Taught by
Linux Foundation
