Hardening the security of your Kubernetes network stack with eBPF
As the adoption of Kubernetes continues to grow in the Cloud Native landscape, so do the security challenges associated with its complex network architecture. In the past couple of years, eBPF has become very popular as a powerful platform for the next generation of networking and security tools, but there is a gap between detailed events at the kernel level, and meaningful, understandable information at the Kubernetes level, that platform and security teams can act on. This talk will take you from bytecode in the kernel to actionable information and visualisations to harden your Kubernetes network security. We will see how we can gain insights as to what's going on in our clusters, deploy different layers of protections, and even prevent malicious activity from taking place.