SRV308: Securing Serverless Applications Step-by-step
AWS re:Invent 2017 - En podkast av AWS
Kategorier:
You need a new approach to security for serverless applications. Classic approaches just don't make sense, because tools and process can only take you so far. You need a fresh look at what security means in these environments. Serverless applications let you focus on solving the problem at hand. Gone are most of the worries of traditional solutions. No more support code. No more building out infrastructure to deliver your application. This means you have to do less and get more in return. Classic operations fall by the wayside and you can scale your team in unprecedented ways. But what does this mean for security? No matter the design pattern, you're always responsible for your data, even if you're not running the underlying infrastructure. How do you make sure your data is safe and secure if you can't apply the usual set of security controls? In this session, we explore how serverless designs impact security. We look at how the right approach can modernize your security practice, streamline ops, and reduce your workload. This session introduces a step-by-step security process for serverless applications, using services like AWS WAF, IAM, Amazon CloudWatch, and others to build stronger applications. Session sponsored by Trend Micro Incorporated