Securing Serverless – Blog Series – Episode 0x01 – There is No “W” in Serverless

Overview In the last few months, I’ve been busy researching serverless security. My sources for this research were mostly blogs, tutorials and conference talks - basically any kind of public material I could get my hands on. One thing that immediately caught my attention, was that the majority of materials dealt with generic app security topics, and only a small fraction of the available data actually touched on serverless-specific concerns or challenges.
Read more

The First “Serverless Architectures Security Top 10” Guide Released

Download the "Serverless Architectures Security Top 10" Guide Today, we are launching the “Serverless Architectures Security Top 10” project - this project is meant to provide assistance and education for organizations looking to adopt serverless architectures. This document is not a secure coding best practices, but rather a list of the top most common weaknesses that are found in serverless applications. The research for the list was done by a strong group of security experts, industry practitioners and top notch serverless aficionados.
Read more