This talk given at the AGL All Member Meeting [VIRTUAL] of Spring 2021 presents how the application framework and its core components can shift from being based on Smack to SELinux.

The Linux kernel has many security mechanisms: capabilities, credentials, cgroups, namespaces, security modules, SELinux, AppArmor, Smack, ...

The talk reviews their benefits. As of today, the AGL application framework leverages these security features in order to achieve safety, security and privacy of the system, applications and users.

The talk summarizes the current state of the application framework.

Finally, the talk presents the work done in replacing Smack with SELinux and shows the designs that make the transition transparent to application developers while providing the same level of security.

Slides: [click here]

Video: [click here]