Upload File

the serverless intro - hackthezone · the serverless intro the security part the closing demo....

  • Home
  • Documents
  • The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
18

Upload: others

Post on 24-Jun-2020

6 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 2: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 3: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function

The serverless intro

The security part

The closing demo

Page 4: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function

Physical Servers

On Premise

IaaS

Infrastructure

PaaS

Platform

SaaS FaaS

Software Function

Page 5: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 6: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 7: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 8: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 9: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 10: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 11: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 12: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 13: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function

1. Injection 1. Injection

2. Broken Authentication 2. Broken Authentication

3. Sensitive Data Exposure 3. Sensitive Data Exposure

4. XML External Entities (XXE) 4. XML External Entities (XXE)

5. Broken Access Control 5. Broken Access Control

6. Security Misconfiguration 6. Security Misconfiguration

7. Cross-Site Scripting (XXS) 7. Cross-Site Scripting (XXS)

8. Insecure Deserialization 8. Insecure Deserialization

9. Using Components with Known Vulnerabilities 9. Using Components with Known Vulnerabilities

10. Insufficient Logging & Monitoring 10. Insufficient Logging & Monitoring

Page 14: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function

Vulnerable OS dependencies

Denial of Service (DoS)

Long-lived compromised servers

Page 15: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function

Secure coding

Sanitize input

Page 16: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 17: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function
Page 18: The serverless intro - HackTheZone · The serverless intro The security part The closing demo. Physical Servers On Premise IaaS Infrastructure PaaS Platform SaaS FaaS Software Function

Interpretation for Serverless - OWASP Foundation · Intro: Welcome to Serverless Security When adopting serverless technology, we eliminate the need to develop a server to manage

Ciudad de México - Dell · aplicaciones PaaS Funciones Serverless FaaS Objetivo estratégico: Trasladar tantas cargas de trabajo como sea técnicamente posible al nivel superior

Why kubernetes for Serverless (FaaS)

Bringing serverless to containers with Google Cloud Run · 2020. 7. 8. · Docker, Kubernetes Serverless: FaaS, PaaS 😨 Setup and maintenance work. Provision resources ahead of

Intro to Serverless

When should you use a Serverless Approach? · Microservices Feels like “backward step” Difficult concept for developers Efficient Asynchronous by default Hot swappable FaaS

Intro to Serverless Development - AWS Community Day to Serverless Develo… · Intro to Serverless Development Leo Lindhorst (Saxonia Systems AG) | 09.09.2019 Community Day 2019 Sponsors

Function as a Service - CERN openlab · OpenStack CERN Cloud FaaS Serverless Computing Functions as a Service FaaS Advantages Existing FaaS providers Qinling 8 Architecture qinling-api

Hamburg University of Applied Sciences Serverless & FaaS Oct …ubicomp/... · 2018. 10. 26. · Outline 1. Basics of serverless & FaaS 2. Motivation & Tradeoffs 3. Cloud Providers

Computing (FaaS) to k8s Cluster using Terraform - OpenStack...to k8s Cluster ? Jadi? Serverless adalah tentang tidak diperlukannya manage server, semua tentang pemanfaatan service,

Putting the F in FaaS: Functional Compositional Patterns in a Serverless World

Serverless Computing: FaaSter, Better, Cheaper and More ... · “functions“ containers packages actual functions FaaS running functions in the cloud (hosted functions) real “pay

Intro to Serverless AWS Web Apps

Everything you always wanted to know about Serverless ... · Serverless, Funcon-as-a-service (FaaS) or Backend-as-a-service (BaaS), removes the dependency on the always-on server

Serverless Data Analytics in the IBM Cloudcloudlab.urv.cat/web/.../files/publications/... · 1 INTRODUCTION Serverless computing, also known as “functions-as-a-service” (FaaS),

Julieanne Faas Portfolio

Serverless - callistaenterprise.se · Amazon AWS Lambda FaaS Providers. 3 SERVERS INNEBÄR Administration nätinfrastruktur, orkestrering, autoskalning Kostnader varje miljö kräver

Cloud security - Cornell Universityshmat/courses/cs6431/cloudsecurity.pdf · SalesForce “Serverless” FaaS Amazon Lambdas. HTTP request DB of user data The ongoing migration to

Business application architecture in modern multi-cloud environment / Microsoft SaaS + Serverless Architecture FaaS Approach / Tokyo .net developers meetup #26 2017-10-24

Tutorial 4 – Introduction to AWS Lambda with the Serverless …faculty.washington.edu/wlloyd/courses/tcss562/tutorials/... · 2020. 12. 6. · AWS Lambda FaaS platform, and then

Serverless Operations...Fission: Serverless Functions • Open source Kubernetes-native FaaS framework • Lambda-like service both on-premise and in the cloud • Designed to be easy

FaaS Shell - Linux Foundation Events...Apps Azure Functions Twilio StackStorm IBM Functions Composer IBM Cloud Functions Apache OpenWhisk Fission Workflow Fission Why FaaS Shell? Serverless

ABANDON ALL HARDWARE INTRO TO SERVERLESS · INTRO TO SERVERLESS ABANDON ALL HARDWARE. ABOUT ME ... SERVERLESS THE FRAMEWORK. GOALS DEMO In the next 15 mins, using a skeleton project

Serverless Framework Intro

Samenin de cloud...Docker Cloud, Amazon ECS Function as a Service (Faas), Serverless AWS Lambda, Google Cloud Functions, Azure functions Cloud Orchestration Cloud Management Platforms

Trust More, Serverless - SysTor'2019 Trust More... · 2019. 6. 16. · Serverless and FaaS Evolution of cloud computing 1.Infrastructure-as-a-Service (IaaS) 2.Platform-as-a-Service

Serverless Gardens · A Serverless Architecture is an event driven system that utilises and other fully managed services for logic and persistence. FaaS . Why choose Serverless? Benefits

Serverless computing and Function-as-a-Service (FaaS)

CSPOT: A Serverless Platform of Things · 2019-12-21 · A Serverless Platform of Things The goal of CSPOT is to allow IoT applications to use a single FaaS programming model \end-to-end"

Serverless Parachutes: Preparing Chosen Functionalities ...€¦ · APIs to avoid having a traditional backend system, FaaS focuses on using provider-managed, arbitrary, event-driven,

Will Serverless Computing Revolutionize NFV? · 2020. 5. 1. · paper, we will be referring to FaaS when we use the term serverless computing. Conceptually,it may appearthattheevent-drivennature

Five Approaches to - Epsagon · Although FaaS is only a subset of the serverless ecosystem, the two terms are often used interchangeably. Serverless/FaaS is yet another quantum leap

Trustworthy & Accountable Function-as-a-Service · Function-as-a-Service (FaaS) Recent instantiation of “serverless computing” • Customer specifies the function • Service

Horst Faas obituary

DevOpsSec and Container/ FaaS (Function as a …...Serverless Security Visibility & runtime application security IAM Security Access governance, Privileged monitoring and UEBA through