Session

Serveless security issues and best practices

Serverless and Function as a Service (FaaS) give us new ways to deploy applications based in microservices architecture. The possibility of executing functions as a service allows designing scalable and highly parallel applications, but on the other hand, this kind of applications require following security best practices for minimizing attack surface.

In this talk I will review the main security issues we can find in the serverless paradigm, comparaing with the cloud traditional model. Once reviewed these security issues, we will review best practices from developer point of view for minimizing attack surface.

These could be the main talking points:

1. Introducing Serverless computing and Function as a Service (FaaS)
2. Serverless security issues
3. Serverless security best practices

Jose Manuel Ortega

Software engineer & Security Researcher

View Speaker Profile