2.2 LIDS: Trusted Kernel & MAC


Trusted Kernel
Protect the kernel itself

Mandatory Access Control (MAC)
No one can change the MAC rules
Least privilege	

Admin tools
Configure the MAC Acls