. https://blog.radware.com/security/2019/03/security-pros-and-perils-of-serverless-architecture/
blog article
Serverless architectures are revolutionizing the way organizations procure and use enterprise technology. This cloud computing model can drive cost-efficiencies, increase agility and enable organizations to focus on the essential aspects of software development. While serverless architecture offers some security advantages, trusting that a cloud provider has security fully covered can be risky. That’s why it’s critical to understand what serverless architectures mean for cyber security. What Serverless Means for Security. Many assume that serverless is more secure than traditional architectures. This is partly true. As the name implies, serverless architecture does not require server provisioning. Deep under the hood, however, these REST API functions are still running on a server, which in turn runs on an operating system and uses different layers of code to parse the API requests. As a result, the total attack surface becomes significantly larger. When exploring whether and to what extent to use serverless architecture, consider the security implications. READ MORE