AWS Lambda

The AWS Lambda provides compute abstraction to run application code without having to provision and operate servers. With AWS Lambda, only the function code needs to be provided and the AWS services creates and automatically scales the compute infrastructure and the executioin context.

From the shared responsibility model, AWS is responsible for protecting the infrastructure, while the function code is the responsibility of the application provider.

Cloud One Application Security provides run time protection for function code running on AWS Lambda service. Application Security enables the security by providing protection layers that are configured to run with the function code, and providing protection from within. The protection layer offers detection and remediation for attacks such as remote command execution and sql injections.

Application Security provides two options for adding the protection layer to function code execution, refer to Security layers for AWS Lambda for details.