cilium/cilium

Cilium is a category-defining project that successfully disrupted the Kubernetes networking space by replacing standard iptables-based routing with eBPF (extended Berkeley Packet Filter). With over 24k stars and a decade of development, it has transitioned from a niche networking tool to the de facto standard for cloud-native infrastructure. Its defensibility is rooted in two pillars: deep technical complexity (eBPF is notoriously difficult to implement and maintain across kernel versions) and massive ecosystem gravity. It is a graduated CNCF project and has been adopted as the default networking layer by major cloud providers (e.g., Google Cloud's GKE Dataplane V2 and AWS EKS Anywhere). This level of integration creates high switching costs. While competitors like Tigera (Calico) exist, Cilium's lead in the eBPF-native space is substantial. Frontier labs are unlikely to compete here as this is low-level systems infrastructure, far removed from LLM development. The primary risk is platform domination, where cloud providers offer managed versions that capture the economic value, but this typically solidifies rather than threatens the project's technical relevance. Its displacement is unlikely in the near term because it requires a fundamental paradigm shift in Linux kernel networking to surpass eBPF's efficiency.