Security Implications of Serverless Computing in the Cloud

Abstract The promise of easier development, scalability, and cost-effectiveness has made serverless computing quite popular in recent years. But this fundamental change in the architecture of cloud computing brings with it new security issues. The security implications of serverless computing are examined in this paper, along with potential threats, weaknesses, and solutions to improve the overall security posture in a serverless context.  Introduction Serverless is an application delivery method where cloud providers automatically intercept user requests and computing events to dynamically allocate and scale compute resources, allowing you to run applications without having to provision, configure, manage, or maintain server infrastructure. It makes use of the Function-as-a-Service (FaaS) concept, a type of service within public cloud, that frees developers from managing a large server infrastructure by enabling them to package and distribute their code easily. Developers construct logic that is deployed in containers that are fully managed by the cloud....