Yes. I just gave that talk in September at the Linux Security
Summit.
It is still an early prototype, but we are continuing to work on it and
plan to release it once we've integrated with the application layer
access controls and can show a more complete solution.
Thanks for that!
Right now I am torn between two alternatives: 1) android + very limited
(if at all) selinux support +
google-installed-bloatware-I-cannot-remove; or 2) old-ish fedora kernel
for the target arch (arm-compatible) + selinux +
software-packages-I-want (including iptables, openvpn etc) I have
compiled from source for the target arch.
As it stands right now, I am inclined to go for option 2, not least
because SELinux is much more likely to be supported there. The drawback,
though, is I do not know whether any of the packages I want to put in my
smartphone are supported there? I am also petrified of the lax security
which exists on android. Unreal!
What is not an option for me though is leaving the "standard" android
system with all the bloatware installed on that smartphone.