Protego Labs
A serverless security solution designed to secure serverless applications throughout their lifecycle.
| Category | Serverless Security |
|---|---|
| Last page update | 19 days ago |
| Pricing Details | Free starter plan (LAB) supports up to one million invocations and 30 days of data retention; higher tiers available for increased functions and invocations. |
| Target Audience | Organizations using serverless architectures looking for comprehensive security solutions. |
Protego Labs' serverless security solution manages securing serverless applications, which often lack the robust security measures found in traditional application environments. This platform is designed to provide full life-cycle security, from deployment to runtime, specifically tailored for the unique constraints and opportunities of serverless architectures.
The technical architecture of Protego is built around three core components: Proact, Observe, and Defend. Proact minimizes the serverless attack surface by continuously scanning the infrastructure and optimizing function roles and permissions to a least privilege policy. The Policy Manager and Posture Explorer provide a comprehensive security-focused view, while the Code Supply Chain Tracker manages the security of third-party libraries. Observe detects attacks and provides application visibility through the collection and correlation of hundreds of data points, utilizing machine-based analysis and deep learning algorithms to model normal function behavior and detect anomalies. Defend ensures real-time protection by identifying and preventing attacks with the Minimum Effective Dose of protection, inspecting and filtering inputs at the function level within the context of the full application flow.
Operationally, Protego is scalable and can be up and running in as little as 20 minutes. It is offered in five tiers, including a free starter plan (LAB) that supports up to one million invocations and 30 days of data retention, with higher tiers offering increased allotments of functions and invocations along with extended data retention periods. However, the solution's effectiveness can be limited by the complexity of the serverless environment and the volume of data being processed, particularly in large-scale deployments where data retention costs can become significant.
From a technical standpoint, Protego's use of deep learning algorithms and real-time monitoring ensures high granularity in threat detection, but this also requires robust computational resources to maintain performance. The platform's integration with major cloud providers like AWS, GCP, and Azure enhances its versatility but may introduce additional configuration challenges in multi-cloud environments. Overall, Protego's approach balances security with performance, making it a viable solution for organizations looking to secure their serverless applications without compromising on operational efficiency.