Serverless Computing Security

Apply

Project Description

Serverless computing is an emerging paradigm that promises to bring a true pay-as-you-use billing model to the cloud computing environment. However, this paradigma is subject to both internal and external threats. The internship will address the specific use case of internal threats, identifying the current attack vectors, the impact caused by the attacks leveraging the highlighted vectors, and finally, propose and test some fixes to thwart the highlighted threats. The Internship, which will develop under the guidance of the advisor, is characterized by a combination of analysis, ideation, implementation, and evaluation phases.
Program - Computer Science
Division - Computer, Electrical and Mathematical Sciences and Engineering
Center Affiliation - Resilient Computing and Cybersecurity Center
Field of Study - Computer Science/Computer Engineering

About the
Researcher

Roberto Di Pietro

Professor, Computer Science

Roberto Di Pietro

Desired Project Deliverables

- D1: survey of serverless architectures currently deployed - D2: description of the attack surface for the main architectures - D3: main vulnerabilities related to the attack surface - D4: Attacks proof of concept and fixes

RECOMMENDED STUDENT ACADEMIC & RESEARCH BACKGROUND

Bachelor in Computer Engineering or Computer Sciences
Bachelor in Computer Engineering or Computer Sciences
Computer Skills: C, C++, Java, Kotlin, Scala, Python
Computer Skills: C, C++, Java, Kotlin, Scala, Python
Experience in code-based project development
Experience in code-based project development