Presentation: Securing Serverless – By Breaking In

Track: Going Serverless

Location: Ballroom A

Day of week:

Slides: Download Slides

Level: Intermediate - Advanced

Persona: Architect, Backend Developer, Developer, Security Professional

More talks on:

Abstract

Serverless rocks the security boat. Ad-hoc servers we don’t manage rids us of certain security concerns, while the proliferation of cheap micro services raises others. In this talk, we’ll experience these security concerns live. We’ll break into a vulnerable Serverless application and exploit multiple weaknesses, helping you better understand the mistakes you can make, their implications, and how you can avoid them.

Speaker: Guy Podjarny

Co-founder @Snyk.io

Guy Podjarny (@guypod) is a cofounder at Snyk.io, focusing on open source and cloud security. Guy was previously CTO at Akamai following their acquisition of his startup, Blaze.io, and worked on the first web app firewall & security code analyzer. Guy is a frequent conference speaker, the author of "Responsive & Fast”, “High Performance Images” and the upcoming “Securing Open Source Code”.

Find Guy Podjarny at

Speaker page

@guypod

Similar Talks

License Compliance for Your Container Supply Chain

Qcon

Open Source Engineer @VMware

Nisha Kumar

Stateful Programming Models in Serverless Functions

Qcon

Principal Engineering Manager @Microsoft, helping lead the Azure Functions Team

Chris Gillum

Coding without Complexity

Qcon

CEO/Cofounder @darklang

Ellen Chisa

Exploiting Common iOS Apps’ Vulnerabilities

Qcon

Software Engineer @Google

Ivan Rodriguez

Securing Software From the Supply Side

Qcon

Senior Engineering Manager @GitHub

Nickolas Means

Programming the Cloud: Empowering Developers to Do Infrastructure

Qcon

TypeScript Co-Creator

Luke Hoban

Cloud Native Applications and Infrastructures Panel

Qcon

TypeScript Co-Creator

Luke Hoban

Scaling Patterns for Netflix's Edge

Qcon

Playback Edge Engineering @Netflix

Justin Ryan

Automated Testing for Terraform, Docker, Packer, Kubernetes, and More

Qcon

Co-founder @gruntwork_io

Yevgeniy Brikman