Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
KCD Lima: eBee in Peru!
Search
Liz Rice
July 23, 2025
Technology
0
180
KCD Lima: eBee in Peru!
Drawing parallels between eBPF/Cloud Native and Inca technologies
Liz Rice
July 23, 2025
Tweet
Share
More Decks by Liz Rice
See All by Liz Rice
Building a cloud native business on open source
lizrice
0
220
Unleashing the kernel with eBPF
lizrice
0
300
eBPF's Abilities and Limitations: The Truth
lizrice
0
470
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
lizrice
0
250
When is a Secure Connection not encrypted? And other stories
lizrice
1
110
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
lizrice
1
730
How Many Proxies Do You Need
lizrice
1
170
eBPF for Security Observability
lizrice
0
1.5k
Beginner's Guide to eBPF Programming for Networking
lizrice
1
2.6k
Other Decks in Technology
See All in Technology
松尾研LLM講座2025 応用編Day3「軽量化」 講義資料
aratako
15
4.9k
2025年の医用画像AI/AI×medical_imaging_in_2025_generated_by_AI
tdys13
0
290
善意の活動は、なぜ続かなくなるのか ーふりかえりが"構造を変える判断"になった半年間ー
matsukurou
0
210
Master Dataグループ紹介資料
sansan33
PRO
1
4.2k
Oracle Database@Google Cloud:サービス概要のご紹介
oracle4engineer
PRO
1
820
[Data & AI Summit '25 Fall] AIでデータ活用を進化させる!Google Cloudで作るデータ活用の未来
kirimaru
0
4.2k
Introduction to Bill One Development Engineer
sansan33
PRO
0
340
Cloud WAN MCP Serverから考える新しいネットワーク運用 / 20251228 Masaki Okuda
shift_evolve
PRO
0
130
あの夜、私たちは「人間」に戻った。 ── 災害ユートピア、贈与、そしてアジャイルの再構築 / 20260108 Hiromitsu Akiba
shift_evolve
PRO
0
360
スクラムを一度諦めたチームにアジャイルコーチが入ってどう変化したか
kyamashiro73
0
140
迷わない!AI×MCP連携のリファレンスアーキテクチャ完全ガイド
cdataj
0
150
All About Sansan – for New Global Engineers
sansan33
PRO
1
1.3k
Featured
See All Featured
Exploring anti-patterns in Rails
aemeredith
2
220
Getting science done with accelerated Python computing platforms
jacobtomlinson
0
88
Being A Developer After 40
akosma
91
590k
Leveraging LLMs for student feedback in introductory data science courses - posit::conf(2025)
minecr
0
97
The Spectacular Lies of Maps
axbom
PRO
1
410
Ten Tips & Tricks for a 🌱 transition
stuffmc
0
46
Why You Should Never Use an ORM
jnunemaker
PRO
61
9.7k
Joys of Absence: A Defence of Solitary Play
codingconduct
1
260
Designing for humans not robots
tammielis
254
26k
Why Mistakes Are the Best Teachers: Turning Failure into a Pathway for Growth
auna
0
32
The Web Performance Landscape in 2024 [PerfNow 2024]
tammyeverts
12
990
Noah Learner - AI + Me: how we built a GSC Bulk Export data pipeline
techseoconnect
PRO
0
78
Transcript
Liz Rice eBee in Peru! Chief Open Source Officer, Isovalent
at Cisco
¡Hola! Me llamo Liz 👋 • Open source and community
at Isovalent, now part of Cisco • Author Learning eBPF & Container Security • Formerly CNCF Governing Board, chair of Technical Oversight Committee • Early career writing network protocol code
This is eBee
What is ? Makes the kernel programmable
userspace kernel app event eBPF program system calls - run
custom code in the kernel
userspace kernel app eBPF program eBPF Verifier system calls -
safely run custom code in the kernel 🔍
Photo: Smishra1 CC BYSA 4.0 One day in July 2024
✅ Open Source, many contributors ✅ Field-hardened The verifier is
software too Much reduced chance of a kernel crash
Like Inca walls, eBPF is Robust Good for security Takes
skill to build
Incas built incredible things together Ayni - reciprocal work Mita
- required work on state projects Minka - work for the benefit of the community
Sometimes Incas had to make bug fixes
Incas upgraded to avoid vulnerabilities Rebuilding rope bridges every year
Photo by Marcos Venteo:
eBPF is the foundation for powerful Cloud Native tools for
networking, observability and security
Chasquis - messenger runners Fit and trained to run long
distances Relay system - up to 300km / day Incas had networking
Controls on people and goods as they passed through checkpoints
Incas had network policies
Incas had encrypted data traffic Quipus - knotted strings
Incas had observability hubble Observation points high up
Incas had security Walls Narrow staircases Gates with doors Armed
guards
Did the Incas have Tetragon?
apiVersion: cilium.io/v1alpha1 kind: TracingPolicy metadata: name: "inca" spec: kprobes: -
call: "security_file_permission" ... selectors: - matchArgs: - index: 0 operator: "Equal" values: - "/lost_city_of_inca.txt" matchActions: - action: Sigkill 🚀 process 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 📚 read 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 💥 exit 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt SIGKILL Did the Incas have Tetragon?
Muchas gracias! ebpf.io cilium.io tetragon.io isovalent.com/labs
None
lizrice
.jpg){kind=avatar}
aratako
tdys13
matsukurou
sansan33
oracle4engineer
kirimaru
shift_evolve
kyamashiro73
cdataj
aemeredith
jacobtomlinson
akosma
minecr
axbom
stuffmc
jnunemaker
codingconduct
tammielis
auna
tammyeverts
techseoconnect
