PureSec Serverless Security Platform

The PureSec Serverless Security Platform manages securing serverless applications, which often lack the traditional security controls found in traditional infrastructure. This platform integrates into the CI/CD process, providing a holistic approach to serverless security.

Technically, PureSec's architecture includes static analysis of serverless code and cloud configurations to detect misconfigurations, vulnerabilities, and weaknesses. It generates least-privileged IAM roles for AWS Lambda functions, ensuring that permissions are tightly controlled. The platform also features a serverless application firewall that can detect and stop various types of injection attacks, such as SQL injection and cross-site scripting.

During runtime, PureSec's patent-pending protection empowers serverless functions to protect themselves against malicious behavior, including data leakage, execution of malicious processes, and unauthorized access to the file system. This is achieved through machine learning-based behavioral protection that monitors application behavior in real-time.

Operationally, PureSec's integration with SIEM systems and data analysis platforms like Splunk enhances visibility and allows for better risk management and security posture analysis. However, it's important to note that the effectiveness of these protections can be influenced by the complexity and scale of the serverless environment, and careful configuration is necessary to avoid false positives or performance degradation.

Specifically, the FunctionShield library, part of the PureSec platform, supports multiple runtimes including Node.js, Python, and Java for AWS Lambda, and Node.js and Python for Google Cloud Functions. It allows developers to enforce strict security policies, such as blocking outbound connectivity or read/write access to temporary files, with configurable modes for blocking, alerting, or allowing specific actions.