Presented by

  • Casey Schaufler

    Casey Schaufler

    Casey Schaufler worked on Unix kernels in the 1970s-90s. He has implemented access control lists, mandatory access control, extended filesystem attributes, X11 access controls, network protocols and audit systems. Casey was a major contributor to and the technical editor for the P1003.1e/2c WITHDRAWN DRAFT security standard. His involvement in Linux began with the Linux Security Module work at the turn of the century, introducing the Smack LSM in 2007. He has worked as director of engineering and technical program manager (briefly, and not all that well) in addition to hands on software development. Casey is currently reworking the LSM infrastructure to support multiple concurrent modules.


Most development efforts in the Linux kernel are self contained and reasonably small. Review usually involves a few interested developers and the relevant maintainer. Making a large infrastructure change is another matter. It can involve multiple sub-systems and a score of maintainers, all with their own development priorities. Casey Schaufler has spent the past seven years reworking the Linux security modules infrastructure. In this talk he shares his experience dealing with the long development process, unresponsive or hostile maintainers, and surrounding technologies that change without warning. He offers recommendations on how to address conflicting feedback and identify when progress is stalled. Linux Australia: YouTube: