A First Look at the Security of Serverless Applications
CNCF [Cloud Native Computing Foundation] via YouTube
Build AI Apps with Azure, Copilot, and Generative AI — Microsoft Certified
Master Production-Ready Machine Learning, Step by Step
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore the security landscape of serverless applications in this 18-minute conference talk by Eduard Marin from Telefonica Research. Delve into the emerging paradigm of serverless computing, its advantages, and the unique security challenges it presents. Examine the main types of security attacks against serverless applications, their feasibility, and potential mitigation strategies. Learn about the serverless ecosystem, threat models, and positive aspects of this technology. Gain insights into the top 10 security threats, specific attack surfaces, and future work in the field. Understand the responsibilities of cloud providers in developing security mechanisms and the implications for customers implementing serverless functions.
Syllabus
Introduction
Background
Serverless
How Serverless Works
Serverless Ecosystem
Threat Model
Positive Aspects
Security and Privacy
Serverless Platforms
Main Attacks
Top 10 Security Threats
Mitigation
Surface Specific Attacks
Future Work
Conclusion
Taught by
CNCF [Cloud Native Computing Foundation]