This section describes the security mechanisms defined by the Flask architecture and the SELinux implementation of these mechanisms. It begins with a discussion of the mandatory access controls for process management. Mandatory access controls for file system objects are then described. This section concludes with a discussion of socket mandatory access controls.