BpfJailer: eBPF Mandatory Access Control [pdf]

I can imagine that using eBPF will be faster, but I never really imagined SElinux as slow myself. I guess it's because of all the files that need to be opened, and updating policy.

They probably mean for hyper scaling environments SElinux is slow to use, it is designed for traditional servers that don't change often.

It's interesting to see my old pal SElinux be replaced.

I've only found the slides for this talk, if anyone has video I'd love to see it.