Serverless Computing Security
ApplyProject Description
Serverless computing is an emerging paradigm that promises to bring a true pay-as-you-use billing model to the cloud computing environment.
However, this paradigma is subject to both internal and external threats. The internship will address the specific use case of internal threats, identifying the current attack vectors, the impact caused by the attacks leveraging the highlighted vectors, and finally, propose and
test some fixes to thwart the highlighted threats.
The Internship, which will develop under the guidance of the advisor, is characterized by a combination of analysis, ideation, implementation, and evaluation phases.




About the
Researcher
Roberto Di Pietro
Professor, Computer Science

Desired Project Deliverables
- D1: survey of serverless architectures currently deployed
- D2: description of the attack surface for the main architectures
- D3: main vulnerabilities related to the attack surface
- D4: Attacks proof of concept and fixes