Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥

KCD Lima: eBee in Peru!

Avatar for Liz Rice Liz Rice
July 23, 2025
Technology
0
170

KCD Lima: eBee in Peru!

Drawing parallels between eBPF/Cloud Native and Inca technologies

Avatar for Liz Rice

Liz Rice

July 23, 2025
Tweet

More Decks by Liz Rice

See All by Liz Rice
Building a cloud native business on open source
Avatar for Liz Rice lizrice
0
220
Unleashing the kernel with eBPF
Avatar for Liz Rice lizrice
0
290
eBPF's Abilities and Limitations: The Truth
Avatar for Liz Rice lizrice
0
450
Simplifying multi-cloud and multi-cluster Kubernetes deployments with Cilium
Avatar for Liz Rice lizrice
0
240
When is a Secure Connection not encrypted? And other stories
Avatar for Liz Rice lizrice
1
100
Keeping it simple: Cilium Mesh - networking for multi-cloud Kubernetes and beyond
Avatar for Liz Rice lizrice
1
720
How Many Proxies Do You Need
Avatar for Liz Rice lizrice
1
160
eBPF for Security Observability
Avatar for Liz Rice lizrice
0
1.5k
Beginner's Guide to eBPF Programming for Networking
Avatar for Liz Rice lizrice
1
2.6k

Other Decks in Technology

See All in Technology
Oracle Database@AWS:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
0
150
21st ACRi Webinar - AMD Presentation Slide (Nao Sumikawa)
Avatar for Nao Sumikawa nao_sumikawa
0
230
事業部のプロジェクト進行と開発チームの改善の “時間軸" のすり合わせ
Avatar for konifar konifar
9
3.2k
EM歴1年10ヶ月のぼくがぶち当たった苦悩とこれからへ向けて
Avatar for maaaato maaaato
0
130
re:Invent2025 コンテナ系アップデート振り返り(+CloudWatchログのアップデート紹介)
Avatar for 枡川健太郎 masukawa
0
200
20251209_WAKECareer_生成AIを活用した設計・開発プロセス
Avatar for syobochim syobochim
1
310
セキュリティAIエージェントの現在と未来 / PSS #2 Takumi Session
Avatar for GMO Flatt Security flatt_security
3
1.5k
AI/MLのマルチテナント基盤を支えるコンテナ技術
Avatar for Preferred Networks pfn
PRO
5
780
【5分でわかる】セーフィー エンジニア向け会社紹介
Avatar for Safie safie_recruit
0
38k
AI時代の開発フローとともに気を付けたいこと
Avatar for KAMEGAWA Kazushi kkamegawa
0
1.1k
freeeにおけるファンクションを超えた一気通貫でのAI活用
Avatar for jaxx2104 jaxx2104
3
1.4k
.NET 10 のパフォーマンス改善
Avatar for neno nenonaninu
2
4.9k

Featured

See All Featured
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
331
21k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
Avatar for panda_program panda_program
120
20k
The Hidden Cost of Media on the Web [PixelPalooza 2025]
Avatar for Tammy Everts tammyeverts
1
87
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
Avatar for Stéphanie Walter stephaniewalter
285
14k
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
333
22k
The Success of Rails: Ensuring Growth for the Next 100 Years
Avatar for Eileen M. Uchitelle eileencodes
47
7.8k
RailsConf 2023
Avatar for Aaron Patterson tenderlove
30
1.3k
How to Ace a Technical Interview
Avatar for Jacob Kaplan-Moss jacobian
280
24k
Bash Introduction
Avatar for André Augusto Costa Santos 62gerente
615
210k
It's Worth the Effort
Avatar for 3n 3n
187
29k
Faster Mobile Websites
Avatar for Dean Hume deanohume
310
31k
Save Time (by Creating Custom Rails Generators)
Avatar for Garrett Dimon garrettdimon
PRO
32
1.8k

Transcript

  1. Liz Rice eBee in Peru! Chief Open Source Officer, Isovalent

    at Cisco

  2. ¡Hola! Me llamo Liz 👋 • Open source and community

    at Isovalent, now part of Cisco • Author Learning eBPF & Container Security • Formerly CNCF Governing Board, chair of Technical Oversight Committee • Early career writing network protocol code

  3. This is eBee

  4. What is ? Makes the kernel programmable

  5. userspace kernel app event eBPF program system calls - run

    custom code in the kernel

  6. userspace kernel app eBPF program eBPF Verifier system calls -

    safely run custom code in the kernel 🔍

  7. Photo: Smishra1 CC BYSA 4.0 One day in July 2024

  8. ✅ Open Source, many contributors ✅ Field-hardened The verifier is

    software too Much reduced chance of a kernel crash

  9. Like Inca walls, eBPF is Robust Good for security Takes

    skill to build

  10. Incas built incredible things together Ayni - reciprocal work Mita

    - required work on state projects Minka - work for the benefit of the community

  11. Sometimes Incas had to make bug fixes

  12. Incas upgraded to avoid vulnerabilities Rebuilding rope bridges every year

    Photo by Marcos Venteo:

  13. eBPF is the foundation for powerful Cloud Native tools for

    networking, observability and security

  14. Chasquis - messenger runners Fit and trained to run long

    distances Relay system - up to 300km / day Incas had networking

  15. Controls on people and goods as they passed through checkpoints

    Incas had network policies

  16. Incas had encrypted data traffic Quipus - knotted strings

  17. Incas had observability hubble Observation points high up

  18. Incas had security Walls Narrow staircases Gates with doors Armed

    guards

  19. Did the Incas have Tetragon?

  20. apiVersion: cilium.io/v1alpha1 kind: TracingPolicy metadata: name: "inca" spec: kprobes: -

    call: "security_file_permission" ... selectors: - matchArgs: - index: 0 operator: "Equal" values: - "/lost_city_of_inca.txt" matchActions: - action: Sigkill 🚀 process 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 📚 read 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt 💥 exit 021c177557f5 /usr/bin/cat /lost_city_of_inca.txt SIGKILL Did the Incas have Tetragon?

  21. Muchas gracias! ebpf.io cilium.io tetragon.io isovalent.com/labs

  22. None