YoVDO

Combining kTLS and BPF for Introspection and Policy Enforcement

Offered By: Linux Plumbers Conference via YouTube

Tags

Linux Plumbers Conference Courses Network Security Courses Linux Kernel Development Courses BPF Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a technical talk from the Linux Plumbers Conference that delves into combining kernel TLS (kTLS) and Berkeley Packet Filter (BPF) for introspection and policy enforcement. Learn about the current kernel's sockmap BPF architecture for L7 policy enforcement, as well as the ULP and strparser framework used for socket callbacks and message boundary determination. Discover the challenges faced when integrating kTLS with BPF to enable in-kernel introspection and policy enforcement of application data before encryption. Gain insights into various approaches to address ULP layer shortcomings, optimizations for strparser, and the consolidation of scatter/gather processing for kTLS and sockmap. Understand the potential future developments in this area of kernel networking and security.

Syllabus

LPC2018 - Combining kTLS and BPF for Introspection and Policy Enforcement


Taught by

Linux Plumbers Conference

Related Courses

Containers at Facebook - Advanced Linux, Btrfs, and Systemd Implementation
ChariotSolutions via YouTube Cilium - Kernel Native Security and DDOS Mitigation for Microservices with BPF
Docker via YouTube The Why and How of libseccomp
Linux Foundation via YouTube BPF Static Keys Support: Update on Wildcard Map Including Use Cases and Restrictions
Linux Foundation via YouTube Compiled BPF: Part 2 - Evolution and Future Directions
Linux Foundation via YouTube