SELinux Fundamentals
CSE-41378
Security-Enhanced Linux, taking your Linux security to the next level.
SELinux adds a set of patches to the Linux kernel and utilities to provide a strong, flexible, mandatory access control (MAC) architecture into the major subsystems of the kernel. It provides an enhanced mechanism to enforce the separation of information based on confidentiality and integrity requirements, which allows threats of tampering, and bypassing of application security mechanisms to be addressed, and enables the confinement of damage that can be caused by malicious or flawed applications. It includes a set of sample security policy configuration files designed to meet common, general-purpose security goals.
Course Highlights:
- In-depth exploration of how SELinux functions according to industry standards
- Hands-on lab environment to work with SELinux
- Real-word application using SELinux
Course Learning Outcomes:
- Explain the capabilities of SELinux
- Know how and where to apply SELinux
- Secure servers with SELinux
- Troubleshoot permission denials
- Build custom SELinux polices
Course Typically Offered: Online in Fall and Spring quarter.
Prerequisite: Basic knowledge of Linux, networks, and computer skills.
Next Step: After completing this course, consider taking CSE-41366 Programming in the Linux Environment to continue learning.
Contact: For more information about this course, please email infotech@ucsd.edu.
Course Information
Course sessions
Section ID:
Class type:
This course is entirely web-based and to be completed asynchronously between the published course start and end dates. Synchronous attendance is NOT required.
You will have access to your online course on the published start date OR 1 business day after your enrollment is confirmed if you enroll on or after the published start date.
Textbooks:
All course materials are included unless otherwise stated.
Policies:
- No refunds after: 9/30/2024
Schedule:
Instructor: Tracy Reed, RHCE
Tracy Reed has 25 years of experience with Linux and cyber security. He is a Security Architect at a "Big Four" accounting firm where he provides security and risk mitigation services. Reed has experience with container security, server hardening, intrusion detection, as well as ISO/NIST/SOC/PCI/HIPAA compliance in cloud/virtualized/containerized environments. Currently, Tracy teaches the following courses for Extended Studies; Linux Operating System Fundamentals, Linux Security, Linux Cloud Infrastructure, SELinux Fundamentals, and DevSecOps.