NCI WEBSITE
NORMA eResearch @NCI Library

Leveraging eBPF for Enhanced Kubernetes Observability and Security

Tools

Ngoc Thanh Hung, Pham (2024) Leveraging eBPF for Enhanced Kubernetes Observability and Security. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
 PDF (Master of Science)
Download (1MB) | Preview
[thumbnail of Configuration Manual]
Preview
 PDF (Configuration Manual)
Download (501kB) | Preview

Abstract

With the development of cloud computing, Kubernetes is an orchestration tool used in a modern microservice application. However, the architectural complexities and the shared nature of the kernel have caused serious security and observability challenges. This paper explores how eBPF can help in harvesting detailed insights into system behavior, application logs, and real-time security threats for greater observability and security in Kubernetes. In this research, eBPF will be considered in its implementation for security breach detection at runtime with the least performance overheads. Moreover, the integration of tools such as Falco, which are based on eBPF with already established monitoring systems like Prometheus and Grafana, and AlertManager which triggers any important alerts to administrators, giving high visibility and helping in the real-time mitigation of security threats from within the kernel.

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Deshmukh, Sudarshan
UNSPECIFIED
Uncontrolled Keywords: Observability; Kubernetes; EKS; eBPF; Falco; Run-time Security Detection; Prometheus; Grafana; AlertManager
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Cloud computing
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Divisions: School of Computing > Master of Science in Cloud Computing
Depositing User: Ciara O'Brien
Date Deposited: 04 Jul 2025 09:10
Last Modified: 04 Jul 2025 09:10
URI: https://norma.ncirl.ie/id/eprint/8042

Actions (login required)

View Item View Item