Landlock LSM: Towards unprivileged sandboxing

Michael Schubert

Playlists: 'asg2017' videos starting here / audio / related events

Landlock is a proposal for a new Linux Security Module (LSM) to create secure sandboxes with the goal “to empower any process, including unprivileged ones, to securely restrict themselves.” This presentation will give an overview on what Landlock is, discuss the current status of the patchset and demonstrate how Landlock works, as well as its differences compared to other Linux security modules.

Download

Related

Embed

Share:

Tags