Security News > 2024 > June > Cilium: Open-source eBPF-based networking, security, observability
Cilium is an open-source, cloud-native solution that leverages eBPF technology in the Linux kernel to provide, secure, and monitor network connectivity between workloads.
eBPF is a technology originating from the Linux kernel that allows sandboxed programs to run in a privileged context, such as the operating system kernel.
It extends the kernel's capabilities safely and efficiently without modifying the kernel source code or loading kernel modules.
Cilium offers a flat Layer 3 network extending across multiple clusters, supporting native routing and overlay modes.
It knows Layer 7 protocols and can enforce network policies from Layer 3 to Layer 7 using an identity-based security model decoupled of network addressing.
Cilium provides distributed load balancing for traffic between pods and to external services, capable of replacing kube-proxy by using eBPF hash tables for nearly unlimited scalability.
News URL
Related news
- Misconfig Mapper: Open-source tool to uncover security misconfigurations (source)
- OSPS Baseline: Practical security best practices for open source software projects (source)
- Hetty: Open-source HTTP toolkit for security research (source)
- NetBird: Open-source network security (source)
- IntelMQ: Open-source tool for collecting and processing security feeds (source)
- YES3 Scanner: Open-source S3 security scanner for public access, ransomware protection (source)