M. A. CallesServerless Securityhttps://doi.org/10.1007/978-1-4842-6100-2_6

6. Restricting Permissions

Miguel A. Calles¹

(1)

La Habra, CA, USA

In this chapter, we will discuss how we might use permissions in AWS, Azure, and Google Cloud. We might consider them as a first-line defense in our serverless environment from attacks on functions and account takeovers. Therefore, we should understand how to implement them. We will learn the permission capabilities each provider has and how we might use them.

Importance of Restricting Permissions

Permissions in a serverless or public cloud environment are conceptually similar to those in a private cloud environment. Both give you settings to define “what” is available to use and “who” ...

Get Serverless Security: Understand, Assess, and Implement Secure and Reliable Applications in AWS, Microsoft Azure, and Google Cloud now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Serverless Security: Understand, Assess, and Implement Secure and Reliable Applications in AWS, Microsoft Azure, and Google Cloud by Miguel A. Calles

6. Restricting Permissions

Importance of Restricting Permissions

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly