No Server, No Cry: the Ups and Downs of Building a Scalable Security Serverless Platform
Aviram
Cloud Village @ DEF CON 33 · Day 1 · Cloud Village
In this insightful talk from Cloud Village, Aviram, Co-founder and Chief Research and Innovation Officer at JIT, delves into the complexities and crucial considerations of securing a complete serverless platform. While serverless architectures promise unparalleled scale and simplicity, Aviram emphasizes that security is not an inherent, out-of-the-box feature. Building a robust serverless application requires deliberate and significant investment in security measures, a lesson learned firsthand during the development of JIT's own agentic application security platform.
AI review
A vendor founder walks through serverless security 101 — shared responsibility model, OWASP Top 10 adapted for Lambda, a tool parade of Prowler/KICS/IAM Access Analyzer — and calls it research. Nothing here is original, the 'event-stream' supply chain example is years old, and the whole thing reads like a JIT product onboarding deck with the logo swapped out.