Presentations
SELinux
The “State of SELinux” is an annual year in review presentation, given at the Linux Security Summit.
- State of SELinux, LSS-EU 2023 [ PDF ]
- State of SELinux, LSS-NA 2019 [ PDF ]
- State of SELinux, LSS-EU 2018 [ PDF ]
- State of SELinux, LSS-NA 2018 [ PDF ]
- State of SELinux, LSS 2017 [ PDF ]
- State of SELinux, LSS 2016 [ PDF ]
- State of SELinux, LSS 2015 [ PDF ]
- State of SELinux, LSS 2014 [ PDF ]
- State of SELinux, LSS 2013 [ PDF ]
Various other SELinux related talks.
- io_uring: So Fast. It’s Scary., LSS-EU 2022 [ PDF ]
- SELinux Loves Modularity, DevConf.cz 2018 [ PDF ]
Audit
Assorted audit related talks.
- io_uring: So Fast. It’s Scary., LSS-EU 2022 [ PDF ]
Labeled Networking
An introduction to labeled networking, updated for 2012 and with a Red Hat Enterprise Linux focus.
- SELinux Network Access Controls, 2012 [ PDF ]
Labeled networking was a relatively new topic for Linux in 2008 and 2009, as a result I gave a number of presentations on the technology.
- Introduction to NetLabel, LinuxCon 2009 [ PDF ]
- Introduction to Labeled Networking, LF Japan 2008 [ PDF ]
- State of Labeled Networking, OLS 2008 [ PDF ]
Syscall Filtering
An introduction to syscall filtering and the libseccomp project.
- Introduction to Syscall Filtering, DevConf.cz 2014 [ PDF ]
Hardware Root of Trust
A robust design to secure TPM secrets in a datacenter environment across updates.
- Securing TPM Secrets in the Datacenter, LSS 2021 [ PDF ]
An effort to add signature verification to Intel’s TXT/tboot.
- Securing TPM Secrets with TXT and Kernel Signatures, LSS-EU 2019 [ PDF ]
- Securing TPM Secrets with TXT and Kernel Signatures, LSS-NA 2019 [ PDF ]
Virtualization
A brief set of slides for a discussion around Virtualization security.
- Virtualization Security Discussion, LPC 2012 [ PDF ]
Open Source Development
A collection of presentations involving general Open Source development topics.
- CII Best Practices Badge Program, DevConf.cz 2017 [ PDF ]
- Testing Bleeding Edge Kernels, Flock 2016 [ PDF ]
