1.a. Background

• The Inevitability of Failure: The Flawed Assumption of Security in Modern Computing Environments explains the need for mandatory access controls.
• The Flask Security Architecture: System Support for Diverse Security Policies explains the security architecture of Flask, the architecture used by SELinux.
• Implementing SELinux as a Linux Security Module has specifics about SELinux access checks in the kernel.

1.b. Policy

• Configuring the SELinux Policy
• SELinux Reference Policy
• SELinux Policy Development Course (slides available at the bottom of the page)
• SELinux Object Classes and Permissions Overview

1.c. Books

• SELinux by Example: Using Security Enhanced Linux, Frank Mayer, Karl MacMillan, and David Caplan, Prentice Hall, 2006; ISBN 0131963694
• SELinux: NSA's Open Source Security Enhanced Linux, Bill McCarty, O'Reilly Media, 2004; ISBN 0596007167

1.d. Meeting Notes

• March 3rd, 2006 SELinux Developer Summit
• May 6th, 2004 Informal Meeting

1.e. Presentations

2006 SELinux Symposium

• SELinux Year in Review, Stephen Smalley, National Security Agency
• Reference Policy for Security Enhanced Linux, Karl MacMillan, Tresys Technology (Paper)

2005 SELinux Symposium

• SELinux Overview, Stephen Smalley, National Security Agency
• Core Policy Management Infrastructure for SELinux, Karl MacMillan, Tresys Technology
• Targeted vs. Strict Policy History and Strategy, Dan Walsh, Red Hat
• Tresys SETools: Tools and Libraries for Policy Analysis and Management, Frank Mayer, Tresys Technology
• Information Flow Analysis for Type Enforcement Policies, Karl MacMillan, Tresys Technology
• SELinux Policy Analysis Concepts and Techniques, David Caplan, Frank Mayer, Tresys Technology