Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
KCD Lima: eBee in Peru!
Search
Liz Rice
July 23, 2025
Technology
200
0
Share
KCD Lima: eBee in Peru!
Drawing parallels between eBPF/Cloud Native and Inca technologies
Liz Rice
July 23, 2025
More Decks by Liz Rice
See All by Liz Rice
Building a cloud native business on open source
lizrice
0
250
Unleashing the kernel with eBPF
lizrice
0
360
eBPF's Abilities and Limitations: The Truth
lizrice
0
510
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
lizrice
0
270
When is a Secure Connection not encrypted? And other stories
lizrice
1
120
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
lizrice
1
770
How Many Proxies Do You Need
lizrice
1
190
eBPF for Security Observability
lizrice
0
1.6k
Beginner's Guide to eBPF Programming for Networking
lizrice
1
2.7k
Other Decks in Technology
See All in Technology
社内エンジニア勉強会の醍醐味と苦しみ/tamadev
nishiuma
0
250
生成AI時代のドキュメントに対する期待の整理と実践から得た学び / Rethinking Documentation for LLM: Lessons from Practice
bitkey
PRO
1
100
今年注目する!データ分析プラットフォームでのAIの活用
nayuts
0
170
AIコーディング時代における、ソフトウェアサプライチェーン攻撃に対する防衛術(簡易版)
soysoysoyb
0
160
AzureのIaC管理からログ調査まで、随所に役立つSkillsとCustom-Instructions / Boosting IaC and Log Analysis with Skills
aeonpeople
0
280
Google Cloud Next '26 の裏でこっそりリリースされたCloud Number Registry & Cloud Hub コスト分析 を試してみた
hikaru1001
0
110
20260423_執筆の工夫と裏側 技術書の企画から刊行まで / From the planning to the publication of technical book
nash_efp
3
610
Percolatorを廃止し、マルチ検索サービスへ刷新した話 / Search Engineering Tech Talk 2026 Spring
visional_engineering_and_design
0
170
Chasing Real-Time Observability for CRuby
whitegreen
0
280
バイブコーディングで3倍早く⚪⚪を作ってみた
samakada
0
180
UIライブラリに依存しすぎないReact Native設計を目指して
grandbig
0
150
Class.new is all you need
riseshia
1
190
Featured
See All Featured
Google's AI Overviews - The New Search
badams
0
990
DevOps and Value Stream Thinking: Enabling flow, efficiency and business value
helenjbeal
1
170
Learning to Love Humans: Emotional Interface Design
aarron
275
41k
How To Stay Up To Date on Web Technology
chriscoyier
790
250k
WCS-LA-2024
lcolladotor
0
550
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4.2k
Tell your own story through comics
letsgokoyo
1
900
Measuring & Analyzing Core Web Vitals
bluesmoon
9
810
Groundhog Day: Seeking Process in Gaming for Health
codingconduct
0
160
VelocityConf: Rendering Performance Case Studies
addyosmani
333
25k
The agentic SEO stack - context over prompts
schlessera
0
760
Building a Scalable Design System with Sketch
lauravandoore
463
34k
Transcript
Liz Rice eBee in Peru! Chief Open Source Officer, Isovalent
at Cisco
¡Hola! Me llamo Liz 👋 • Open source and community
at Isovalent, now part of Cisco • Author Learning eBPF & Container Security • Formerly CNCF Governing Board, chair of Technical Oversight Committee • Early career writing network protocol code
This is eBee
What is ? Makes the kernel programmable
userspace kernel app event eBPF program system calls - run
custom code in the kernel
userspace kernel app eBPF program eBPF Verifier system calls -
safely run custom code in the kernel 🔍
Photo: Smishra1 CC BYSA 4.0 One day in July 2024
✅ Open Source, many contributors ✅ Field-hardened The verifier is
software too Much reduced chance of a kernel crash
Like Inca walls, eBPF is Robust Good for security Takes
skill to build
Incas built incredible things together Ayni - reciprocal work Mita
- required work on state projects Minka - work for the benefit of the community
Sometimes Incas had to make bug fixes
Incas upgraded to avoid vulnerabilities Rebuilding rope bridges every year
Photo by Marcos Venteo:
eBPF is the foundation for powerful Cloud Native tools for
networking, observability and security
Chasquis - messenger runners Fit and trained to run long
distances Relay system - up to 300km / day Incas had networking
Controls on people and goods as they passed through checkpoints
Incas had network policies
Incas had encrypted data traffic Quipus - knotted strings
Incas had observability hubble Observation points high up
Incas had security Walls Narrow staircases Gates with doors Armed
guards
Did the Incas have Tetragon?
apiVersion: cilium.io/v1alpha1 kind: TracingPolicy metadata: name: "inca" spec: kprobes: -
call: "security_file_permission" ... selectors: - matchArgs: - index: 0 operator: "Equal" values: - "/lost_city_of_inca.txt" matchActions: - action: Sigkill 🚀 process 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 📚 read 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 💥 exit 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt SIGKILL Did the Incas have Tetragon?
Muchas gracias! ebpf.io cilium.io tetragon.io isovalent.com/labs
None
lizrice
nishiuma
bitkey
nayuts
soysoysoyb
aeonpeople
hikaru1001
nash_efp
visional_engineering_and_design
whitegreen
samakada
grandbig
riseshia
badams
.png){kind=avatar}
helenjbeal
aarron
chriscoyier
lcolladotor
kastner
letsgokoyo
bluesmoon
codingconduct
addyosmani
schlessera
lauravandoore
