Securing your serverless app can feel overwhelming. Do you ever have that sinking feeling in the pit of your stomach, worrying that you’ve forgotten something? The agonizing fear that you’ve left the stove on and will burn down your home? If you’re deploying serverless applications, you may be experiencing that twisting apprehension with regards to […]
We talk a lot about the need for a different security paradigm for AWS lambda security, and it’s easy for these messages to get conflated with messages like “this thing isn’t secure.” While it’s sort of early days for serverless, there are a few good reasons to believe that security teams should be pushing their […]
Thanks for joining me for the second post in the series, the OWASP Serverless Top 10 Broken Authentication. In the previous post I discussed what might be the most concerning attack under every platform – injections. The post demonstrated the changes in attack surface when moving from a perimeter-based entry point in traditional monolithic applications […]
For this Serverless Podcast, Hillel was joined by Shali Mor, Vice President, R&D and Co-founder of Protego. Watch the video below or listen to the audio on SoundCloud. Shali explained, “In R&D, we focus on 3 main things: Providing value to customers. Serverless security can be time-consuming and difficult, and we aim to alleviate the […]
Serverless apps are more agile, with faster deployment times and lower costs. Shifting to AWS Lambda Functions or Azure Functions makes some things more secure, but loss of control results in new security problems.