Why You Should Stop Caring About A Server That Isn’t Yours Anymore

Are you working or interested in working in AppSec? Do you live in a world where XSS, SSTI and other acronyms trigger you? The goal of this talk is to help you understand it’s ok to let go of the server and get back to your original mission, to secure code.

For years Application Security practitioners have been required to navigate the entire stack of an application in order to reduce risk posed to organizations. Serverless is a fundamental shift in shifting that risk to organizations who are likely much better at what they do at scale than you could ever dream to be.

Join me as I review the progress and failures the application security industry has been associated with in the past decade. We’ll then explore some of the more interesting FaaS offerings outside of the Top 3 (Amazon, Google, Microsoft) and explore some of the security implications of using these other services. Ultimately listeners should be able to walk away from this talk feeling more comfortable just letting go of the server and living serverless. Let’s move away from worrying about where our code runs to focusing on how secure the code is. Really isn’t that what we were supposed to be doing all along?

Parking Details:
https://imgur.com/a/eLp1XNR

Parking on Hayden and National is free after 6pm.

If no parking is available on street please proceed to the parking structure from Hayden Ave. and take a ticket from the kiosk. Parking will be validated or otherwise free.