System resources. Integrity. Usability. Understandability. The most frequently mentioned terms in questions about SE Linux policy used on the current RHEL/Fedora installations. And the more mentioned words in questions related to containers hosting platforms. Does Security Enhanced Linux as a technology for process isolation provide a solution other than the current used policy? Does it bring performance improvements? Is a technology more usable? Red Hat SELinux team will give you answers based on the recent SELinux developments and introduce kernel optimalizations, improved kernel testing, a new SELinux policy language with re-written userspace toolchain and a vision of a new policy for Atomic.
Paul Moore has been involved in various Linux security efforts since 2004, first at Hewlett-Packard and now at Red Hat. He currently maintains the SELinux, audit, and labeled networking subsystems in the Linux Kernel as well as the userspace libseccomp library.