Lines Matching full:selinux
33 Security-Enhanced Linux (SELinux) is used to further define the boundaries of
36 <p>As part of the Android <a href="{@docRoot}devices/tech/security/index.html">security model</a>, Android uses SELinux to enforce mandatory access control (MAC) over all
38 capabilities). SELinux enhances Android security by confining privileged
42 all Android code and contributors are publicly available for review on <a href="https://android.googlesource.com/">android.googlesource.com</a>. With SELinux, Android can better protect and confine system services, control
46 <p>Android includes SELinux in enforcing mode and a corresponding security policy
49 may refine their software and SELinux policies before enforcing them.</p>
53 <p>SELinux operates on the ethos of default denial. Anything that is not
54 explicitly allowed is denied. SELinux can operate in one of two global modes:
56 enforcing mode, in which denials are both logged and enforced. SELinux also
62 incremental application of SELinux to an ever-increasing portion of the system.
66 <p>In the L release, Android moves to full enforcement of SELinux. This builds
70 better understand and scale their SELinux implementations to provide compatible
101 default SELinux policy. For more information, contact <a href="mailto:security@android.com">security@android.com</a>.</p>
