With user data increasingly being stored on web services, the ability of these systems to protect user data from unauthorized access is of increasing importance. The design of web applications where many users send requests to a single server prevents traditional access control based on user from working on web service hosts. To address this extended Berkely Packet Filter (eBPF) was used to implement a proof-of-concept system for providing access control for files based on the web user making the request. This provided a demonstration of the feasibility of providing access control in kernel space without requiring changes to the kernel, demonstrating that such access control mechanisms are feasible.