https://www.youngju.dev/blog 천천히 올바르게. AI Researcher & DevOps Engineer Youngju's tech blog. GPU/CUDA, LLM, MLOps, Kubernetes AI workloads, distributed training, and data engineering. ko fjvbn2003@gmail.com (Youngju Kim) fjvbn2003@gmail.com (Youngju Kim) Sat, 13 Jun 2026 00:00:00 GMT https://www.youngju.dev/blog/linux/2026-06-13-ebpf-security-tetragon-falco-lsm.en https://www.youngju.dev/blog/linux/2026-06-13-ebpf-security-tetragon-falco-lsm.en Why runtime security is essential in the era of supply chain attacks and container escapes, and how eBPF answers the call. Covers Falco rule writing, kernel-level blocking with Tetragon TracingPolicy, the principles of BPF LSM, a layered comparison with seccomp and AppArmor, and operational know-how. Sat, 13 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) ebpfsecurityfalcotetragonkuberneteslsmruntime-security https://www.youngju.dev/blog/linux/2026-06-13-ebpf-security-tetragon-falco-lsm.ja https://www.youngju.dev/blog/linux/2026-06-13-ebpf-security-tetragon-falco-lsm.ja コンテナエスケープとサプライチェーン攻撃の時代に、なぜランタイムセキュリティが必須なのか、そしてeBPFがどう答えになるのかを整理します。Falcoのルール作成、Tetragon TracingPolicyによるブロック、BPF LSMの原理、seccomp/AppArmorとのレイヤ比較、運用ノウハウを扱います。 Sat, 13 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) ebpfsecurityfalcotetragonkuberneteslsmruntime-security https://www.youngju.dev/blog/linux/2026-06-13-ebpf-security-tetragon-falco-lsm https://www.youngju.dev/blog/linux/2026-06-13-ebpf-security-tetragon-falco-lsm 컨테이너 이스케이프와 공급망 공격 시대에 런타임 보안이 왜 필수인지, 그리고 eBPF가 어떻게 답이 되는지 정리합니다. Falco 룰 작성, Tetragon TracingPolicy로 차단까지, BPF LSM의 원리, seccomp/AppArmor와의 계층 비교, 운영 노하우를 다룹니다. Sat, 13 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) ebpfsecurityfalcotetragonkuberneteslsmruntime-security