Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
KCD Lima: eBee in Peru!
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
Liz Rice
July 23, 2025
Technology
210
0
Share
KCD Lima: eBee in Peru!
Drawing parallels between eBPF/Cloud Native and Inca technologies
Liz Rice
July 23, 2025
More Decks by Liz Rice
See All by Liz Rice
Building a cloud native business on open source
lizrice
0
250
Unleashing the kernel with eBPF
lizrice
0
380
eBPF's Abilities and Limitations: The Truth
lizrice
0
520
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
lizrice
0
280
When is a Secure Connection not encrypted? And other stories
lizrice
1
130
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
lizrice
1
780
How Many Proxies Do You Need
lizrice
1
200
eBPF for Security Observability
lizrice
0
1.6k
Beginner's Guide to eBPF Programming for Networking
lizrice
1
2.7k
Other Decks in Technology
See All in Technology
シンデレラなんかになりたくない!ガラスの靴が割れた時代にどう歩く?
nomizone
0
210
Claude Codeですべての日常業務を爆速化しよう!
minorun365
PRO
16
14k
GitHub Copilot CLIでWebアクセシビリティを改善した話
tomokusaba
0
110
ビジュアルプログラミングIoTLT vol.23
1ftseabass
PRO
0
140
電子辞書Brainをネットに繋げてみた(自力編)
raspython3
0
220
オンコールの負荷軽減のためのBits Assistant 活用方法 / How to Use Bits Assistant to Reduce the Workload on On-Call Staff
sms_tech
1
200
Python開発環境にハーネス適用を検討する
yuuka51
1
540
AIが変えた"品質の守り方"
kkakizaki
13
4.8k
『家族アルバム みてね』における インシデント対応との向き合い方 / Approach incident response in Family Album
kohbis
2
230
TypeScriptはどのようにどこまで推論できるのか ─ とにかく as は禁止で
ypresto
3
450
大規模環境でどのように監視を実現する?
yuobayashi
1
150
Java正規表現エンジン(NFA)の仕組みと パフォーマンスを維持するための最適化手法
takeuchi_132917
0
120
Featured
See All Featured
The Illustrated Children's Guide to Kubernetes
chrisshort
51
52k
Exploring anti-patterns in Rails
aemeredith
3
370
The Curious Case for Waylosing
cassininazir
1
360
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
marketingsoph
0
150
Building Better People: How to give real-time feedback that sticks.
wjessup
370
20k
Avoiding the “Bad Training, Faster” Trap in the Age of AI
tmiket
0
160
For a Future-Friendly Web
brad_frost
183
10k
The Hidden Cost of Media on the Web [PixelPalooza 2025]
tammyeverts
2
310
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4.3k
The Art of Programming - Codeland 2020
erikaheidi
57
14k
Context Engineering - Making Every Token Count
addyosmani
9
910
AI in Enterprises - Java and Open Source to the Rescue
ivargrimstad
0
1.3k
Transcript
Liz Rice eBee in Peru! Chief Open Source Officer, Isovalent
at Cisco
¡Hola! Me llamo Liz 👋 • Open source and community
at Isovalent, now part of Cisco • Author Learning eBPF & Container Security • Formerly CNCF Governing Board, chair of Technical Oversight Committee • Early career writing network protocol code
This is eBee
What is ? Makes the kernel programmable
userspace kernel app event eBPF program system calls - run
custom code in the kernel
userspace kernel app eBPF program eBPF Verifier system calls -
safely run custom code in the kernel 🔍
Photo: Smishra1 CC BYSA 4.0 One day in July 2024
✅ Open Source, many contributors ✅ Field-hardened The verifier is
software too Much reduced chance of a kernel crash
Like Inca walls, eBPF is Robust Good for security Takes
skill to build
Incas built incredible things together Ayni - reciprocal work Mita
- required work on state projects Minka - work for the benefit of the community
Sometimes Incas had to make bug fixes
Incas upgraded to avoid vulnerabilities Rebuilding rope bridges every year
Photo by Marcos Venteo:
eBPF is the foundation for powerful Cloud Native tools for
networking, observability and security
Chasquis - messenger runners Fit and trained to run long
distances Relay system - up to 300km / day Incas had networking
Controls on people and goods as they passed through checkpoints
Incas had network policies
Incas had encrypted data traffic Quipus - knotted strings
Incas had observability hubble Observation points high up
Incas had security Walls Narrow staircases Gates with doors Armed
guards
Did the Incas have Tetragon?
apiVersion: cilium.io/v1alpha1 kind: TracingPolicy metadata: name: "inca" spec: kprobes: -
call: "security_file_permission" ... selectors: - matchArgs: - index: 0 operator: "Equal" values: - "/lost_city_of_inca.txt" matchActions: - action: Sigkill 🚀 process 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 📚 read 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 💥 exit 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt SIGKILL Did the Incas have Tetragon?
Muchas gracias! ebpf.io cilium.io tetragon.io isovalent.com/labs
None
lizrice
nomizone
minorun365
tomokusaba
1ftseabass
raspython3
sms_tech
yuuka51
kkakizaki
kohbis
ypresto
yuobayashi
takeuchi_132917
chrisshort
aemeredith
cassininazir
marketingsoph
wjessup
tmiket
brad_frost
tammyeverts
kastner
erikaheidi
addyosmani
ivargrimstad
