Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore an innovative eBPF-based mandatory access control framework designed to protect eBPF security tools in this 33-minute conference talk from the Linux Foundation. Learn how security researchers have leveraged eBPF to build cutting-edge security mechanisms with kernel-independent bytecode and runtime safety guarantees, particularly valuable in environments with specialized security requirements where traditional LSMs are unsuitable or kernel modifications are impractical. Discover the unique security challenges posed by eBPF programs, where privileged processes can manipulate all eBPF objects, and understand the limitations of SELinux's coarse-grained access control in protecting individual eBPF tools. Examine a comprehensive solution that addresses these gaps through a configurable policy framework requiring no code changes for tool adoption, including detailed coverage of the design, implementation, and practical policy examples. Gain insights into future development opportunities within eBPF and LSM subsystems for implementing more granular access controls, presented by cybersecurity experts from the National Security Agency who demonstrate how to defend the defenders in the evolving landscape of eBPF security.
![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=40,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
