Glossary

Serverless Security

Serverless security protects code that runs without you managing servers - since you cannot see the server, you focus on protecting what your code does.

What is Serverless Security?

Security practices for protecting serverless functions and applications where the cloud provider manages infrastructure.

Why Should You Care?

Serverless shifts security responsibility. While infrastructure is managed, application vulnerabilities and misconfigurations remain your responsibility.

Is your business exposed?

Real-World Example

A serverless function with overly permissive IAM permissions is exploited to access unrelated data stores.

How to Protect Against Serverless Security

  1. 1.

    Apply least privilege to function permissions

  2. 2.

    Implement function-level monitoring

Related Terms

Lambda, Faas, Cloud Functions

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices