Back To Schedule
Friday, May 3 • 11:05am - 11:40am
Security in the FaaS Lane

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Security in FaaS isn't what we are used to, but this talk shows you how what we learned in appsec still applies. Using LambHack, which is a vulnerable serverless application written in Go on AWS Lambda using Sparta, we will evaluate how to do security in serverless.

In this talk, we will talk about security strategies and pitfalls in the serverless world. You'll leave with an understanding of how to approach security conversations about serverel

Talk goals:

- How to approach the security concerns in a serverless world.
- Talk about the 'WIP' methodology for serverless security.
- Understand current serverless attacks for things to defend against.
- Learn what different cloud providers (AWS/GKE/Azure/Oracle Cloud) do to protect you in a serverless world.

avatar for Karthik Gaekwad

Karthik Gaekwad

Head of CloudNative Engineering, Verica
Karthik Gaekwad is a veteran engineer who enjoys building software products using cloud and container technologies. He has worked in large enterprises and startups with his career spanning National Instruments, Mentor Graphics, Signal Sciences, StackEngine, Oracle, and Verica. Karthik... Read More →
avatar for James Wickett

James Wickett

Sr. Security Engineer and Developer Advocate, Verica
James is a dynamic speaker on software engineering topics ranging from security to development practices. He spends a lot of time at the intersection of the DevOps and Security communities, and seeing the gap in software testing, James founded the open source project, Gauntlt, to... Read More →

Friday May 3, 2019 11:05am - 11:40am MDT
Touchdown Club Left