Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
KCD Lima: eBee in Peru!
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Liz Rice
July 23, 2025
Technology
210
0
Share
KCD Lima: eBee in Peru!
Drawing parallels between eBPF/Cloud Native and Inca technologies
Liz Rice
July 23, 2025
More Decks by Liz Rice
See All by Liz Rice
Building a cloud native business on open source
lizrice
0
250
Unleashing the kernel with eBPF
lizrice
0
370
eBPF's Abilities and Limitations: The Truth
lizrice
0
520
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
lizrice
0
280
When is a Secure Connection not encrypted? And other stories
lizrice
1
130
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
lizrice
1
780
How Many Proxies Do You Need
lizrice
1
200
eBPF for Security Observability
lizrice
0
1.6k
Beginner's Guide to eBPF Programming for Networking
lizrice
1
2.7k
Other Decks in Technology
See All in Technology
CARTA HOLDINGS エンジニア向け 採用ピッチ資料 / CARTA-GUIDE-for-Engineers
carta_engineering
0
47k
freee-mcpを Local→Remote で出してわかった MCP認可実装のリアル
terara
2
220
AI飲み会幹事エージェントを作っただけなのに
ykimi
0
250
Sansan Engineering Unit 紹介資料
sansan33
PRO
1
4.5k
DI コンテナ自動生成ツールを実装してみた / intro-autodi
uhzz
0
770
React Compiler導入の効果と運用の工夫
kakehashi
PRO
3
300
LookerとADKで作る社内AIエージェント
chanyou0311
0
290
最新技術を"今は選ばない"という技術選定
leveragestech
PRO
0
350
[続・営業向け 誰でも話せるOCI セールストーク] セールストーク総集編(2026年5月15日開催)
oracle4engineer
PRO
1
110
Terragrunt x Snowflake + dbt で作るマルチテナントなデータ基盤構築プラットフォーム
gak_t12
0
520
How to learn AWS Well-Architected with AWS BuilderCards: Security Edition
coosuke
PRO
0
200
マンション備え付けのネットワークとLTE回線を組み合わせた ネットワークの安定化の考案
harutiro
1
140
Featured
See All Featured
How People are Using Generative and Agentic AI to Supercharge Their Products, Projects, Services and Value Streams Today
helenjbeal
1
180
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.7k
Practical Orchestrator
shlominoach
191
11k
The untapped power of vector embeddings
frankvandijk
2
1.7k
Build your cross-platform service in a week with App Engine
jlugia
234
18k
Balancing Empowerment & Direction
lara
6
1.1k
Claude Code どこまでも/ Claude Code Everywhere
nwiizo
65
55k
Six Lessons from altMBA
skipperchong
29
4.2k
Max Prin - Stacking Signals: How International SEO Comes Together (And Falls Apart)
techseoconnect
PRO
0
160
HU Berlin: Industrial-Strength Natural Language Processing with spaCy and Prodigy
inesmontani
PRO
0
380
The Curse of the Amulet
leimatthew05
1
12k
Gemini Prompt Engineering: Practical Techniques for Tangible AI Outcomes
mfonobong
2
400
Transcript
Liz Rice eBee in Peru! Chief Open Source Officer, Isovalent
at Cisco
¡Hola! Me llamo Liz 👋 • Open source and community
at Isovalent, now part of Cisco • Author Learning eBPF & Container Security • Formerly CNCF Governing Board, chair of Technical Oversight Committee • Early career writing network protocol code
This is eBee
What is ? Makes the kernel programmable
userspace kernel app event eBPF program system calls - run
custom code in the kernel
userspace kernel app eBPF program eBPF Verifier system calls -
safely run custom code in the kernel 🔍
Photo: Smishra1 CC BYSA 4.0 One day in July 2024
✅ Open Source, many contributors ✅ Field-hardened The verifier is
software too Much reduced chance of a kernel crash
Like Inca walls, eBPF is Robust Good for security Takes
skill to build
Incas built incredible things together Ayni - reciprocal work Mita
- required work on state projects Minka - work for the benefit of the community
Sometimes Incas had to make bug fixes
Incas upgraded to avoid vulnerabilities Rebuilding rope bridges every year
Photo by Marcos Venteo:
eBPF is the foundation for powerful Cloud Native tools for
networking, observability and security
Chasquis - messenger runners Fit and trained to run long
distances Relay system - up to 300km / day Incas had networking
Controls on people and goods as they passed through checkpoints
Incas had network policies
Incas had encrypted data traffic Quipus - knotted strings
Incas had observability hubble Observation points high up
Incas had security Walls Narrow staircases Gates with doors Armed
guards
Did the Incas have Tetragon?
apiVersion: cilium.io/v1alpha1 kind: TracingPolicy metadata: name: "inca" spec: kprobes: -
call: "security_file_permission" ... selectors: - matchArgs: - index: 0 operator: "Equal" values: - "/lost_city_of_inca.txt" matchActions: - action: Sigkill 🚀 process 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 📚 read 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 💥 exit 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt SIGKILL Did the Incas have Tetragon?
Muchas gracias! ebpf.io cilium.io tetragon.io isovalent.com/labs
None
SiteGround - Reliable hosting with speed, security, and support you can count on.
lizrice
carta_engineering
terara
ykimi
sansan33
uhzz
kakehashi
chanyou0311
leveragestech
oracle4engineer
gak_t12
coosuke
harutiro
.png){kind=avatar}
helenjbeal
thoeni
shlominoach
frankvandijk
jlugia
lara
nwiizo
skipperchong
techseoconnect
inesmontani
leimatthew05
mfonobong
