Computer Weekly: “Kubernetes networking evolves: Cilium joins CNCF as an incubator”
Cilium (pronounced ‘see-lee-um’) provides networking, security and observability for cloud native environments by acting as a CNI (Container Network Interface) and enhanced networking layer for Kubernetes using eBPF (extended Berkley Packet Filter).
Cilium joins CNCF as an incubating project
The CNCF Technical Oversight Committee (TOC) has voted to accept Cilium as a CNCF incubating project. Cilium provides networking, security, and observability for cloud native environments by acting as a CNI and enhanced networking layer for…
Kubernetes network policies with Cilium and Linkerd
Guest post originally published on Buoyant’s blog by Zahari Dichev Applying L4 network policies with a service mesh In this tutorial, you’ll learn how to run Linkerd and Cilium together and how to use Cilium to…
How Cilium uses BPF to supercharge Kubernetes networking & security
Kubernetes has ushered in an era of complex and often large-scale microservices applications running as containers that are updated frequently via CI/CD, yet still leverages underlying network technologies like iptables built for an era of simple…
Impact Since completing the migration, Michelin has experienced no CNI-related failures or incidents across its fleet. For a platform team that previously spent significant time firefighting networking problems that they couldn’t even observe clearly, this has…
Securing CI/CD for an open source project, part 3: Credentials, verification, and what’s next
This is the third and final post in a series on how Cilium hardens its CI/CD pipeline. Part 1 covered access control and Part 2 covered dependency hardening. This post covers the last layer: keeping CI…
In March, I gave a talk at KubeCon + CloudNativeCon Europe 2026 in Amsterdam. After the session, the same questions kept coming up on the CNCF Slack and in person: why build agentic AI on cloud…
From data residency to digital sovereignty: Architectural patterns for cloud native platforms
Over the past two years, digital sovereignty has evolved from a policy discussion into a practical platform engineering concern. The EU Data Act has been fully applicable since January 11, 2025. NIS-2 and DORA already shape…
Securing CI/CD for an open source project: Locking down dependencies
Part two This is the second post in a three-part series on how Cilium hardens its CI/CD pipeline. Part 1 covered access control: who can trigger builds and what code CI is allowed to execute. This…
Breaking the single datacenter assumption Modern AI architectures are built on the assumption of centralized, homogeneous data centers. In reality, infrastructure is messy. For most organizations, compute resources are fragmented across private clouds, research environments, and…