Lambda Deep Dive Pt3 - Security

Security engineering in AWS Lambda.

Jul 23, 2022

∙ Paid

hello frens, today we are looking at AWS Lambda through

the security perspective. Security is becoming a popular topic with upper management and cloud security engineer roles are abundant and *well* compensated. So it literally pays to know what is in this article.

Required Reading:

Cloud Engineering with BowTiedCelt

AWS Lambda Deep Dive Pt 1

Hello anons, avatars, cartoons, and the real ones among us. Celt here today to talk about AWS Lambda. Lambda is a very interesting service in that it provides ‘serverless’ compute. AWS has abstracted everything from the customer, except the application code, permissions, and some configurations. This greatly increases time to market for the customer, as all they really need to do is write the code, and attach the…

3 years ago · 3 likes · BowTiedCelt

Cloud Engineering with BowTiedCelt

Lambda Deep Dive Pt 2: Execution Environments

Back again to look at AWS Lambda, this time specifically the execution environment and the dreaded cold start problem. Understanding the execution environment will equip you to fully understand how Lambda actually executes the handler code. In Part 1…

3 years ago · 1 like · BowTiedCelt

AWS Lambda Security

At a high level to understand the security of Lambda lets reference the shared responsibility model for Lambda:

Given that Lambda is a serverless service, the customer is responsible for a smaller amount of security. Why CTOs and CISOs love Lambda is because they do not need to manage the security with respect to the hardware, operating system, and networking infrastructure. Many companies spend millions securing, hardening, and configuring those 3 items alone. If you have worked at a large bank or secure/regulated industry like healthcare you know that to be true. In this model the customer is responsible for the actual code, resource configuration, and the identity and access management. Most important thing is to know how to secure those three customer responsibilities, but having a knowledge of how AWS keeps Lambda secure on the backend is good to know, as the number of people who know both is few.

Keep reading with a 7-day free trial

Subscribe to Software Architecture with BowTiedCelt to keep reading this post and get 7 days of free access to the full post archives.