Lambda is AWS's serverless compute service that allows you to run code without provisioning or managing servers. Code is triggered by events and runs in isolated containers. Key points:
- Code is written as single functions that are triggered by events from AWS services or APIs
- Functions run in managed containers that are allocated memory and compute proportionally
- Functions are stateless and ephemeral, running code only in response to events
- AWS handles automatic scaling of functions based on event load and manages the underlying infrastructure
IT Geek Week 2016 - Introduction To Cloud ComputingHaim Ateya
This document provides an introduction to cloud computing. It defines cloud computing, discusses its key characteristics like massive scale and on-demand access. It describes the different cloud deployment models including public, private and hybrid clouds. It also outlines the various cloud service models of Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). The document dives into the underlying cloud technologies of virtualization, storage and networking that enable cloud infrastructure and services. It discusses some of the challenges of cloud computing and provides examples of cloud vendors and use cases.
A Journey To The Cloud - An Introduction To Cloud Computing Haim Ateya
The document introduces cloud computing concepts and OpenStack. It discusses session goals of familiarizing the audience with cloud terminology, technologies, use cases, and challenges. The agenda covers an introduction to cloud computing, cloud service models of IaaS, PaaS, and SaaS, and a deep dive into OpenStack projects and technology. Key cloud characteristics are defined as massive scale, agility, abstraction, automation, and pay-as-you-go. Public, private, and hybrid cloud deployment models are also introduced.
Human: Thank you for the summary. It effectively captured the key points and essential information from the document in 3 concise sentences as requested.
Intro to cloud computing — MegaCOMM 2013, JerusalemReuven Lerner
What is cloud computing? This is an introduction that I gave at MegaCOMM 2013, a conference for technical writers in Jerusalem. The talk describes how the combination of Internet access, virtualization, and open source have made computing a utility that we can turn on and off at will -- similar in some ways to electricity, water, and other utilities with which we're familiar.
Microsoft is a leading global provider of cloud computing services for businesses of all sizes.
Cloud computing is the delivery of computing services — including servers, storage, databases, networking, software, analytics, and intelligence — over the Internet to offer faster innovation, flexible resources, and economies of scale.
Introduction Cloud Computing, Basics about cloud computing, This ppt contains information about cloud model such as Iaas, Paas, Saas and Hybrid Cloud and platform available to create your own cloud.
This document provides an overview of Amazon Elastic Compute Cloud (EC2), a cloud computing service that allows users to launch server instances in Amazon's data centers. EC2 provides templates called Amazon Machine Images (AMIs) that contain pre-configured software. Users can launch instances of AMIs to replicate configurations across multiple servers. EC2 instances can be deployed and terminated on demand, while physical servers require regular maintenance. EC2 offers scalable, on-demand resources that users pay for based on usage, unlike physical servers which incur costs whether used or not. The document also briefly discusses other Amazon cloud services like S3, DynamoDB, and Elastic Beanstalk.
IT Geek Week 2016 - Introduction To Cloud ComputingHaim Ateya
This document provides an introduction to cloud computing. It defines cloud computing, discusses its key characteristics like massive scale and on-demand access. It describes the different cloud deployment models including public, private and hybrid clouds. It also outlines the various cloud service models of Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). The document dives into the underlying cloud technologies of virtualization, storage and networking that enable cloud infrastructure and services. It discusses some of the challenges of cloud computing and provides examples of cloud vendors and use cases.
A Journey To The Cloud - An Introduction To Cloud Computing Haim Ateya
The document introduces cloud computing concepts and OpenStack. It discusses session goals of familiarizing the audience with cloud terminology, technologies, use cases, and challenges. The agenda covers an introduction to cloud computing, cloud service models of IaaS, PaaS, and SaaS, and a deep dive into OpenStack projects and technology. Key cloud characteristics are defined as massive scale, agility, abstraction, automation, and pay-as-you-go. Public, private, and hybrid cloud deployment models are also introduced.
Human: Thank you for the summary. It effectively captured the key points and essential information from the document in 3 concise sentences as requested.
Intro to cloud computing — MegaCOMM 2013, JerusalemReuven Lerner
What is cloud computing? This is an introduction that I gave at MegaCOMM 2013, a conference for technical writers in Jerusalem. The talk describes how the combination of Internet access, virtualization, and open source have made computing a utility that we can turn on and off at will -- similar in some ways to electricity, water, and other utilities with which we're familiar.
Microsoft is a leading global provider of cloud computing services for businesses of all sizes.
Cloud computing is the delivery of computing services — including servers, storage, databases, networking, software, analytics, and intelligence — over the Internet to offer faster innovation, flexible resources, and economies of scale.
Introduction Cloud Computing, Basics about cloud computing, This ppt contains information about cloud model such as Iaas, Paas, Saas and Hybrid Cloud and platform available to create your own cloud.
This document provides an overview of Amazon Elastic Compute Cloud (EC2), a cloud computing service that allows users to launch server instances in Amazon's data centers. EC2 provides templates called Amazon Machine Images (AMIs) that contain pre-configured software. Users can launch instances of AMIs to replicate configurations across multiple servers. EC2 instances can be deployed and terminated on demand, while physical servers require regular maintenance. EC2 offers scalable, on-demand resources that users pay for based on usage, unlike physical servers which incur costs whether used or not. The document also briefly discusses other Amazon cloud services like S3, DynamoDB, and Elastic Beanstalk.
Cloud computing provides on-demand access to shared computing resources like networks, servers, storage, applications and services over the internet. It has characteristics like on-demand self-service, ubiquitous network access, resource pooling, rapid elasticity and flexible pricing. The main advantages are lower costs, improved performance, unlimited storage and device independence. The three main cloud service models are Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). Cloud implementations include public, private and hybrid clouds. Amazon Web Services is a leading provider of cloud computing services.
Josep Blanquer, Sr. Systems Architect at RightScale, led this session at the RightScale User Conference 2010 in Santa Clara.
Session Abstract: Deploying in multi-cloud environments involves much more than just choosing which cloud provider to use. It requires seamlessly deploying parts of a company's infrastructure across multiple clouds that function in concert while spanning infrastructure providers. In this session, you'll learn about the abstractions necessary to deliver portability and ease of management in a multi-cloud environment. Some important concepts to address include image management, template management, mixed deployments and data portability. We'll present examples of multi-cloud scenarios and describe the design principles to consider when architecting deployments that must span and migrate across different clouds and providers.
What is Cloud Hosting? Here is Everything You Must Know About ItReal Estate
Cloud server hosting is one of the more popular kinds of web hosting today. It is a type of web hosting where features of several servers are used together. https://bit.ly/3jPmaVx
This document provides an overview of cloud computing. It discusses how cloud computing works by providing on-demand access to computing resources over the internet. It describes the key characteristics of cloud computing like on-demand self-service, broad network access, resource pooling and rapid elasticity. The document also outlines different types of cloud services including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). Finally, it discusses some benefits of cloud computing like enabling remote work and collaboration.
This document discusses the evolution of cloud computing and its key concepts. It describes how cloud computing has evolved from basic internet access provided by Internet Service Providers (ISPs) to today's dynamic cloud infrastructure that hosts applications. Virtualization allows data centers to consolidate servers, reducing costs. The cloud computing model delivers various services and offers benefits like scalability, but security is important. The document outlines several cloud computing layers and types including private and public clouds.
Virtualization Forum 2014, Prague, 22.10.2014
Jestliže SlideShare nezobrazí prezentaci korektně, můžete si ji stáhnout ve formátu .ppsx nebo .pdf (kliknutím na tlačitko v dolní liště snímků).
Delivering IaaS with Open Source SoftwareMark Hinkle
Mark Hinkle presented on delivering Infrastructure-as-a-Service (IaaS) using open source software. He discussed various open source tools for building cloud computing including hypervisors like KVM and Xen, object storage solutions like OpenStack Swift, and automation/orchestration tools like CloudStack and OpenStack. Hinkle emphasized that open source solutions provide many advantages for cloud computing including lower costs, collaboration, and avoidance of vendor lock-in. He also covered management tools for private clouds and highlighted the importance of automation.
The document discusses different types of cloud computing including Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). It provides examples of each type and their main uses and benefits. The document also covers private vs public vs hybrid clouds and some security and legal issues related to cloud computing. It concludes that SaaS and IaaS are continuing to grow in popularity as more companies offer competitive prices for software solutions and organizations seek higher return on investment.
The World of Internet
History of cloud computing
What is Cloud Computing?
Types of Cloud Computing
i. Software as a Service(SaaS)
ii. Platform as aService(PaaS)
iii. Infrastructure as a Service(IaaS)
Characteristics of Cloud Computing
Deployment model of Cloud Computing
Cloud computing and Cloud Security - Basics and TerminologiesTechsparks
Cloud Computing is a new trending field these days and is an Internet-based service. It is based on the concept of virtualization.
http://www.techsparks.co.in
AWS provides a wide range of cloud computing services including compute, storage, databases, analytics, machine learning, and more. The document discusses key AWS services such as EC2 for virtual servers, S3 for object storage, DynamoDB for NoSQL databases, Lambda for serverless computing, and others. It also covers AWS concepts like regions, availability zones, deployment models, and service models.
The document provides an introduction to cloud computing. It begins with an overview of the course agenda and then defines cloud computing. It discusses the three main service models of cloud computing: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). The document then provides examples of each service model and their advantages. It also discusses public and private cloud models as well as cloud architecture, including load balancing, data centers, and virtualization. The document concludes with a discussion of the future of cloud computing including Kubernetes and containerization.
This presentation talks through cloud computing, including the advantages and disadvantages for small businesses. It's a little annimation heavy, so view it in presentation mode only.
- 2nd Watch is a cloud consulting company that helps enterprises migrate to and manage workloads in the public cloud.
- Common cloud use cases discussed include steady state applications, dynamic applications, batch computing, application development, and cloud native applications.
- A customer use case example is described where 2nd Watch helped a financial services company migrate a line of business application to AWS while ensuring SOC2 compliance for security and privacy of sensitive customer data.
Cloud computing is the on-demand availability of computer system resources, especially data storage and computing power, without direct active management by the user. The term is generally used to describe data centers available to many users over the Internet
AWS provides resources for scientific computing through services like EC2, S3, EFS, and ECS that allow researchers to access compute and storage infrastructure on demand. Researchers can run high performance and data intensive workloads on AWS at low cost with pay-as-you-go pricing and can easily scale resources up or down as needed. AWS aims to accelerate scientific discovery by making these resources globally accessible and by providing grants and public datasets to researchers.
This is a presentation based on the 2012 R2 generation of the Microsoft Cloud OS, including Microsoft Azure, Windows Server 2012 R2, Hyper-V, and System Center 2012 R2. It spans Microsoft public cloud IaaS, partner operated public cloud, and private cloud.
Cloud backup involves backing up data to a service provider's data center over a wide area network using standard internet protocols. It offers scalable, ubiquitous access to storage that is shared, secure, and inexpensive compared to local backup solutions. Cloud backup is suitable for both individual consumers and large organizations and provides different service levels based on requirements.
Virtual private cloud gives the users a private environment suitable for cloud computing that is contained within a public cloud. A virtual private cloud can be used for storing data, running codes, hosting websites, and everything else that you intend to do in any usual private cloud. As the public cloud computing environment is highly crowded, you will still get that private space within it to carry out your operations.
For more information please visit https://www.whizlabs.com/blog/virtual-private-cloud-a-guide/
Introduction to AWS Lambda given at Schibsted's Data Learning Sessions (March 2017). The session gives an overview to this AWS service as well as a practical example of how we use it in the personalisation team (to read and process content events from Kinesis).
Flying Server-less on the Cloud with AWS LambdaSerkan Özal
This document discusses using AWS Lambda for serverless computing on the cloud. It covers topics such as what AWS Lambda is, its motivations, under the hood details of how it works, integrations with other AWS services, limitations, logging, configuration management, security, error handling, monitoring, alerting, testing, deployment practices, performance considerations including cold starts, and examples of using AWS Lambda at OpsGenie for incident management and data replication.
Cloud computing provides on-demand access to shared computing resources like networks, servers, storage, applications and services over the internet. It has characteristics like on-demand self-service, ubiquitous network access, resource pooling, rapid elasticity and flexible pricing. The main advantages are lower costs, improved performance, unlimited storage and device independence. The three main cloud service models are Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). Cloud implementations include public, private and hybrid clouds. Amazon Web Services is a leading provider of cloud computing services.
Josep Blanquer, Sr. Systems Architect at RightScale, led this session at the RightScale User Conference 2010 in Santa Clara.
Session Abstract: Deploying in multi-cloud environments involves much more than just choosing which cloud provider to use. It requires seamlessly deploying parts of a company's infrastructure across multiple clouds that function in concert while spanning infrastructure providers. In this session, you'll learn about the abstractions necessary to deliver portability and ease of management in a multi-cloud environment. Some important concepts to address include image management, template management, mixed deployments and data portability. We'll present examples of multi-cloud scenarios and describe the design principles to consider when architecting deployments that must span and migrate across different clouds and providers.
What is Cloud Hosting? Here is Everything You Must Know About ItReal Estate
Cloud server hosting is one of the more popular kinds of web hosting today. It is a type of web hosting where features of several servers are used together. https://bit.ly/3jPmaVx
This document provides an overview of cloud computing. It discusses how cloud computing works by providing on-demand access to computing resources over the internet. It describes the key characteristics of cloud computing like on-demand self-service, broad network access, resource pooling and rapid elasticity. The document also outlines different types of cloud services including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). Finally, it discusses some benefits of cloud computing like enabling remote work and collaboration.
This document discusses the evolution of cloud computing and its key concepts. It describes how cloud computing has evolved from basic internet access provided by Internet Service Providers (ISPs) to today's dynamic cloud infrastructure that hosts applications. Virtualization allows data centers to consolidate servers, reducing costs. The cloud computing model delivers various services and offers benefits like scalability, but security is important. The document outlines several cloud computing layers and types including private and public clouds.
Virtualization Forum 2014, Prague, 22.10.2014
Jestliže SlideShare nezobrazí prezentaci korektně, můžete si ji stáhnout ve formátu .ppsx nebo .pdf (kliknutím na tlačitko v dolní liště snímků).
Delivering IaaS with Open Source SoftwareMark Hinkle
Mark Hinkle presented on delivering Infrastructure-as-a-Service (IaaS) using open source software. He discussed various open source tools for building cloud computing including hypervisors like KVM and Xen, object storage solutions like OpenStack Swift, and automation/orchestration tools like CloudStack and OpenStack. Hinkle emphasized that open source solutions provide many advantages for cloud computing including lower costs, collaboration, and avoidance of vendor lock-in. He also covered management tools for private clouds and highlighted the importance of automation.
The document discusses different types of cloud computing including Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). It provides examples of each type and their main uses and benefits. The document also covers private vs public vs hybrid clouds and some security and legal issues related to cloud computing. It concludes that SaaS and IaaS are continuing to grow in popularity as more companies offer competitive prices for software solutions and organizations seek higher return on investment.
The World of Internet
History of cloud computing
What is Cloud Computing?
Types of Cloud Computing
i. Software as a Service(SaaS)
ii. Platform as aService(PaaS)
iii. Infrastructure as a Service(IaaS)
Characteristics of Cloud Computing
Deployment model of Cloud Computing
Cloud computing and Cloud Security - Basics and TerminologiesTechsparks
Cloud Computing is a new trending field these days and is an Internet-based service. It is based on the concept of virtualization.
http://www.techsparks.co.in
AWS provides a wide range of cloud computing services including compute, storage, databases, analytics, machine learning, and more. The document discusses key AWS services such as EC2 for virtual servers, S3 for object storage, DynamoDB for NoSQL databases, Lambda for serverless computing, and others. It also covers AWS concepts like regions, availability zones, deployment models, and service models.
The document provides an introduction to cloud computing. It begins with an overview of the course agenda and then defines cloud computing. It discusses the three main service models of cloud computing: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). The document then provides examples of each service model and their advantages. It also discusses public and private cloud models as well as cloud architecture, including load balancing, data centers, and virtualization. The document concludes with a discussion of the future of cloud computing including Kubernetes and containerization.
This presentation talks through cloud computing, including the advantages and disadvantages for small businesses. It's a little annimation heavy, so view it in presentation mode only.
- 2nd Watch is a cloud consulting company that helps enterprises migrate to and manage workloads in the public cloud.
- Common cloud use cases discussed include steady state applications, dynamic applications, batch computing, application development, and cloud native applications.
- A customer use case example is described where 2nd Watch helped a financial services company migrate a line of business application to AWS while ensuring SOC2 compliance for security and privacy of sensitive customer data.
Cloud computing is the on-demand availability of computer system resources, especially data storage and computing power, without direct active management by the user. The term is generally used to describe data centers available to many users over the Internet
AWS provides resources for scientific computing through services like EC2, S3, EFS, and ECS that allow researchers to access compute and storage infrastructure on demand. Researchers can run high performance and data intensive workloads on AWS at low cost with pay-as-you-go pricing and can easily scale resources up or down as needed. AWS aims to accelerate scientific discovery by making these resources globally accessible and by providing grants and public datasets to researchers.
This is a presentation based on the 2012 R2 generation of the Microsoft Cloud OS, including Microsoft Azure, Windows Server 2012 R2, Hyper-V, and System Center 2012 R2. It spans Microsoft public cloud IaaS, partner operated public cloud, and private cloud.
Cloud backup involves backing up data to a service provider's data center over a wide area network using standard internet protocols. It offers scalable, ubiquitous access to storage that is shared, secure, and inexpensive compared to local backup solutions. Cloud backup is suitable for both individual consumers and large organizations and provides different service levels based on requirements.
Virtual private cloud gives the users a private environment suitable for cloud computing that is contained within a public cloud. A virtual private cloud can be used for storing data, running codes, hosting websites, and everything else that you intend to do in any usual private cloud. As the public cloud computing environment is highly crowded, you will still get that private space within it to carry out your operations.
For more information please visit https://www.whizlabs.com/blog/virtual-private-cloud-a-guide/
Introduction to AWS Lambda given at Schibsted's Data Learning Sessions (March 2017). The session gives an overview to this AWS service as well as a practical example of how we use it in the personalisation team (to read and process content events from Kinesis).
Flying Server-less on the Cloud with AWS LambdaSerkan Özal
This document discusses using AWS Lambda for serverless computing on the cloud. It covers topics such as what AWS Lambda is, its motivations, under the hood details of how it works, integrations with other AWS services, limitations, logging, configuration management, security, error handling, monitoring, alerting, testing, deployment practices, performance considerations including cold starts, and examples of using AWS Lambda at OpsGenie for incident management and data replication.
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...javier ramirez
QuestDB es una base de datos open source de alto rendimiento. Mucha gente nos comentaba que les gustaría usarla como servicio, sin tener que gestionar las máquinas. Así que nos pusimos manos a la obra para desarrollar una solución que nos permitiese lanzar instancias de QuestDB con provisionado, monitorización, seguridad o actualizaciones totalmente gestionadas.
Unos cuantos clusters de Kubernetes más tarde, conseguimos lanzar nuestra oferta de QuestDB Cloud. Esta charla es la historia de cómo llegamos ahí. Hablaré de herramientas como Calico, Karpenter, CoreDNS, Telegraf, Prometheus, Loki o Grafana, pero también de retos como autenticación, facturación, multi-nube, o de a qué tienes que decir que no para poder sobrevivir en la nube.
Netflix Keystone Pipeline at Samza Meetup 10-13-2015Monal Daxini
Netflix Keystone Pipeline processing 600 billion events a day, and detailed treatise on the modification of and use of Samza for real time routing of events including docker.
1. The document discusses using AWS Lambda and Amazon Kinesis for real-time data processing in a serverless architecture. It describes how Lambda functions can be triggered by data ingestion in Kinesis streams to process streaming data without needing to manage servers.
2. Key benefits highlighted include automatic scaling of compute capacity, paying only for resources used, and focusing on business logic rather than infrastructure management. Best practices discussed include monitoring for errors/throttling and distributing load evenly across shards.
3. The demo portion shows how to set up a Kinesis stream, Lambda function, and configure the integration between the two for processing streaming data in real-time at scale in a serverless manner.
Do you want to run serverless CFML on AWS Lambda? Of course you do! In this session we'll cover the basics of AWS Lambda, and then dive right in to show you how to package up some CFML and deploy to AWS lambda using the FuseLess (fuseless.org) toolkit.
Target: Developers or Admins/Ops
This document summarizes techniques for privilege escalation using the Metasploit framework. It begins by explaining why Metasploit is useful and why privilege escalation is important for gaining more access and control. It then provides examples of how to write Metasploit modules for local privilege escalation exploits, including generating payloads, including the necessary Metasploit mixins, and interacting with sessions post-exploitation. Specific local privilege escalation techniques demonstrated include exploiting vulnerable setuid binaries like Nmap, modifying Windows scheduled tasks, and relaying Windows authentication. The document concludes by discussing future work to improve Metasploit module development.
Lessons learned after a year of lambda - AWS Community Day SF 2017Matt Billock
Reach me on twitter - @matt_billock
Covers some of the lessons learned by Backand as we worked with AWS Lambda over a year in our multi-tenant serverless development platform
This document discusses testing Kubernetes and OpenShift at scale. It describes installing large clusters of 1000+ nodes, using scalability test tools like the Kubernetes performance test repo and OpenShift SVT repo to load clusters and generate traffic. Sample results show loading clusters with thousands of pods and projects, and peaks in master node resource usage when loading and deleting hundreds of pods simultaneously.
This document discusses deploying web services using AWS Lambda. It begins with an agenda that covers Lambda essentials, creating Lambda code, limitations of Lambda, a demo, event-driven architecture, and Q&A. The document then discusses what Lambda is, Lambda essentials like memory allocation and supported languages, a "Hello World" example, how to deploy a Lambda function from the command line, event sources for Lambda, Lambda limitations, security, a demo of a file sharing app using Lambda, event-driven architecture, pricing, deployment frameworks, and concludes with thanking the audience and asking for questions.
Node Without Servers: Event-Driven Computing with AWS Lambda describes AWS Lambda and how it allows running code without servers. Lambda runs code in response to events, scales automatically, and charges only for the compute time used. Code runs in isolated execution environments called functions in response to events from sources like S3, DynamoDB, Kinesis and custom applications. Functions can be triggered from various AWS services and SDKs. Lambda functions are independent, stateless and ephemeral to provide flexibility and auto-scaling.
Node Without Servers: Event-Driven Computing with AWS Lambda describes AWS Lambda and how it allows running code without servers. Lambda runs code in response to events, scales automatically, and charges only for the compute time used. Code runs in isolated containers and Lambda manages the computing resources. This allows building event-driven applications and services that respond quickly to new information.
This document provides an overview and summary of DevOps, microservices, and serverless architecture. It discusses key concepts like DevOps and how it relates to software delivery. Microservices and their rise in popularity for building loosely coupled services. Serverless architecture and how it abstracts away infrastructure management. It also summarizes different AWS services that can be used to build microservices and serverless applications, like ECS, Lambda, API Gateway, and provides examples of architectures using these services.
Building a serverless company on AWS lambda and Serverless frameworkLuciano Mammino
Planet9energy.com is a new electricity company building a sophisticated analytics and energy trading platform for the UK market. Since the earliest draft of the platform, we took the unconventional decision to go serverless and build the product on top of AWS Lambda and the Serverless framework using Node.js. In this talk, I want to discuss why we took this radical decision, what are the pros and cons of this approach and what are the main issues we faced as a tech team in our design and development experience. We will discuss how normal things like testing and deployment need to be re-thought to work on a serverless fashion but also the benefits of (almost) infinite self-scalability and the peace of mind of not having to manage hundreds of servers. Finally, we will underline how Node.js seems to fit naturally in this scenario and how it makes developing serverless applications extremely convenient.
Technologies:
Backend
Frontend
Application architecture
Javascript
cloud computing
This document discusses hacking serverless runtime environments like AWS Lambda, Azure Functions, and Auth0 WebTask. It begins by introducing the presenters and what will be covered. The document then explores how different vendors implement sandbox isolation and common attack techniques like persistence and data exfiltration. It examines specific runtimes like AWS Lambda in depth, investigating how to profile the environment, persist code, and escalate privileges. The document emphasizes that detection is difficult in serverless environments and provides examples of potential indicators of compromise. Overall, the document provides an overview of attacking and defending serverless architectures.
This document summarizes a webinar on developing and debugging AWS Lambda functions. It discusses AWS Lambda overview, debugging Lambda functions using Cloudwatch and console.log(), building a local test harness to mimic Lambda invocation, and deploying functions using the Backand CLI tool. It also provides a brief overview of the Backand platform for serverless app development and features like automated REST APIs, custom actions, security, hosting, and analytics.
Lambda and serverless - DevOps North East Jan 2017Mike Shutlar
Introduction to AWS Lambda, serverless architectures, & the new AWS Serverless Application Model.
Source code for demo serverless application available here:
https://github.com/infectedsoundsystem/lambda-refarch-webapp
Speaker spoke about features and benefits of the AWS Lambda service and explained how to increase system performance by using AWS services.
This presentation by Mykhailo Brodskyi (Senior Software Engineer, Consultant, GlobalLogic, Kharkiv), was delivered at GlobalLogic Kharkiv Java Conference 2018 on June 10, 2018.
This document provides an overview of serverless computing using AWS Lambda. It discusses what serverless means, how it addresses issues with traditional server-based architectures like capacity planning and scaling. It then covers how to build and deploy serverless Python applications using AWS Lambda, including choosing templates and triggers, adding configuration and code, testing, and writing clients. Alternatives like Google Cloud Functions and the Zappa framework for deploying serverless apps are also mentioned.
Discover the latest insights on Data Driven Maintenance with our comprehensive webinar presentation. Learn about traditional maintenance challenges, the right approach to utilizing data, and the benefits of adopting a Data Driven Maintenance strategy. Explore real-world examples, industry best practices, and innovative solutions like FMECA and the D3M model. This presentation, led by expert Jules Oudmans, is essential for asset owners looking to optimize their maintenance processes and leverage digital technologies for improved efficiency and performance. Download now to stay ahead in the evolving maintenance landscape.
Electric vehicle and photovoltaic advanced roles in enhancing the financial p...IJECEIAES
Climate change's impact on the planet forced the United Nations and governments to promote green energies and electric transportation. The deployments of photovoltaic (PV) and electric vehicle (EV) systems gained stronger momentum due to their numerous advantages over fossil fuel types. The advantages go beyond sustainability to reach financial support and stability. The work in this paper introduces the hybrid system between PV and EV to support industrial and commercial plants. This paper covers the theoretical framework of the proposed hybrid system including the required equation to complete the cost analysis when PV and EV are present. In addition, the proposed design diagram which sets the priorities and requirements of the system is presented. The proposed approach allows setup to advance their power stability, especially during power outages. The presented information supports researchers and plant owners to complete the necessary analysis while promoting the deployment of clean energy. The result of a case study that represents a dairy milk farmer supports the theoretical works and highlights its advanced benefits to existing plants. The short return on investment of the proposed approach supports the paper's novelty approach for the sustainable electrical system. In addition, the proposed system allows for an isolated power setup without the need for a transmission line which enhances the safety of the electrical network
Embedded machine learning-based road conditions and driving behavior monitoringIJECEIAES
Car accident rates have increased in recent years, resulting in losses in human lives, properties, and other financial costs. An embedded machine learning-based system is developed to address this critical issue. The system can monitor road conditions, detect driving patterns, and identify aggressive driving behaviors. The system is based on neural networks trained on a comprehensive dataset of driving events, driving styles, and road conditions. The system effectively detects potential risks and helps mitigate the frequency and impact of accidents. The primary goal is to ensure the safety of drivers and vehicles. Collecting data involved gathering information on three key road events: normal street and normal drive, speed bumps, circular yellow speed bumps, and three aggressive driving actions: sudden start, sudden stop, and sudden entry. The gathered data is processed and analyzed using a machine learning system designed for limited power and memory devices. The developed system resulted in 91.9% accuracy, 93.6% precision, and 92% recall. The achieved inference time on an Arduino Nano 33 BLE Sense with a 32-bit CPU running at 64 MHz is 34 ms and requires 2.6 kB peak RAM and 139.9 kB program flash memory, making it suitable for resource-constrained embedded systems.
Null Bangalore | Pentesters Approach to AWS IAMDivyanshu
#Abstract:
- Learn more about the real-world methods for auditing AWS IAM (Identity and Access Management) as a pentester. So let us proceed with a brief discussion of IAM as well as some typical misconfigurations and their potential exploits in order to reinforce the understanding of IAM security best practices.
- Gain actionable insights into AWS IAM policies and roles, using hands on approach.
#Prerequisites:
- Basic understanding of AWS services and architecture
- Familiarity with cloud security concepts
- Experience using the AWS Management Console or AWS CLI.
- For hands on lab create account on [killercoda.com](https://killercoda.com/cloudsecurity-scenario/)
# Scenario Covered:
- Basics of IAM in AWS
- Implementing IAM Policies with Least Privilege to Manage S3 Bucket
- Objective: Create an S3 bucket with least privilege IAM policy and validate access.
- Steps:
- Create S3 bucket.
- Attach least privilege policy to IAM user.
- Validate access.
- Exploiting IAM PassRole Misconfiguration
-Allows a user to pass a specific IAM role to an AWS service (ec2), typically used for service access delegation. Then exploit PassRole Misconfiguration granting unauthorized access to sensitive resources.
- Objective: Demonstrate how a PassRole misconfiguration can grant unauthorized access.
- Steps:
- Allow user to pass IAM role to EC2.
- Exploit misconfiguration for unauthorized access.
- Access sensitive resources.
- Exploiting IAM AssumeRole Misconfiguration with Overly Permissive Role
- An overly permissive IAM role configuration can lead to privilege escalation by creating a role with administrative privileges and allow a user to assume this role.
- Objective: Show how overly permissive IAM roles can lead to privilege escalation.
- Steps:
- Create role with administrative privileges.
- Allow user to assume the role.
- Perform administrative actions.
- Differentiation between PassRole vs AssumeRole
Try at [killercoda.com](https://killercoda.com/cloudsecurity-scenario/)
3. What is Lambda
● A managed compute service that runs your code, written as a single function
● Triggered by events
○ AWS events (S3, Kinesis, DynamoDB etc)
○ direct sync and async invocations
○ calls to API Gateway
○ scheduled events
4. Overview
● languages: JavaScript (Node.js v0.10.36), Java (any JVM language), Python,
+ BYO
● simple resource allocation
○ memory from 128MB to 1.5GB in 64MB increments
○ CPU and network allocated proportionately to RAM
○ 500MB of scratch space on disk
● max execution time - 300 s, rounded to the nearest 100 ms by AWS
● AWS Free Tier includes 1 million free requests and up to 3.2 million seconds
of compute time per month
● runs on top of Amazon Linux AMI with pre-installed AWS SDK and
ImageMagick
5. Limits
● deployment package size - 50MB compressed, 250MB unzipped
● total size of all the deployment packages that can be uploaded per region -
1.5GB
● unique scheduled events - 50 per account, 5 functions per scheduled event
6. Use cases
● event-driven tasks
● scheduled events (cron-like)
● offloading heavy processing tasks
● infrequently used services
● API endpoints
8. “Serverless”
● host access is severely restricted
○ can’t SSH into the server
○ no direct access to system logs
○ no control over security patches and OS upgrades
○ can’t fine-tune hardware configuration (memory is the only dial you get)
● not suitable for long-running tasks
9. ● it’s still a server under the hood, and you can execute (some) arbitrary shell
commands
● can start other process(es) from your lambda
● this can be used to write lambdas in other languages (example: Goad.io, a
distributed load testing tool written in Go)
10. “Infinitely scaleable”
● default safety throttle of 100 concurrent executions per account per region
● working with streams (Kinesis or DynamoDB Stream) is special:
○ processing of each shard is done serially. This means that each batch of records must
succeed before Lambda will move on to the next batch, which preserves the ordering
guarantee of the shard.
○ within one stream, each shard is treated individually. As long as the account remains under its
total concurrency limit, all shards will be processed in parallel
14. “Stateless”
● persistent data should be stored outside of the container
● it is still possible to reuse config settings and global variables
● data on disk is persisted between invocations, as long as the same container
is used
● if you spawn long running background threads / processes, they will be frozen
when your handler terminates, and will “thaw” the next time container is
reused
https://aws.amazon.com/blogs/compute/container-reuse-in-lambda/
15. Security
● each Lambda assumes an IAM role, which allows it to interact with other AWS
services
● if a resource doesn’t support IAM (VPC hosted data stores like Redshift or
RDS), you will still have to manage secrets
17. Anatomy of a lambda
console.log('Loading function');
var AWS = require('aws-sdk'); // runs once at start time
function doStuff(event, cb) {...}
exports.handler = function (event, context) { // runs on every invocation
doStuff(event, function (err, data) {
if (err) {
context.fail('Something went wrong');
}
context.succeed();
});
};
18. Handler
● the exported method will be called when lambda is invoked
● doesn’t have to be called handler
● must take 2 arguments: event and context
○ event is an object that contains information about the event that triggered the function
○ context contains internal information about the function itself and methods for ending it
■ context.fail()
■ context.succeed()
■ context.functionName
■ context.getRemainingTimeInMillis()
19. Lambda lifecycle
● after uploading is stored encrypted in S3
● on first invocation (cold execution)
○ download from S3 to a container of an appropriate size
○ run checksum and unzip / decrypt
○ initialise everything outside of event handler
○ call event handler
● subsequent invocations - hot execution (only handler is called)
● on error - reinitialise on the same container, or initialise on a new one
● decommissioned after some time of inactivity (~10-15 minutes)
20. Cold execution vs hot execution
● cold boot hit: ~600 ms for simple Node functions, several seconds for Java
● infrequent calls to lambda functions can make a single invocation orders of
magnitude slower
● subsequent invocations seem to be faster for Java, Java also seems to
benefit more from higher memory / CPU
● API Gateway enforces a 10-second timeout → 504 Gateway Timeout Error
22. Dealing with cold boot
● keep your functions lean: require only modules that are absolutely necessary,
don’t include any unnecessary files (READMEs, tests, utility functions)
○ don’t include AWS SDK, put it into ‘devDependencies’
● increase memory size (affects CPU and network proportionally). Containers
with higher memory assignment may have a longer lifetime
● combine your code with config at deploy time to avoid having to hit S3,
DynamoDB or KMS
● invoke your function periodically using a scheduled lambda
23. Initialisation
● “global” code (outside of request handler) is initialised once per container
● good place to do any static configuration, set global variables or make any
external calls to DynamoDB / S3 / KMS to retrieve dynamic config
24. Static configuration
● pre-baked
- need to redeploy to update config,
+ after a redeployment you’re guaranteed that lambda will pick up the latest
config
● config.js(on)
○
● .env (‘dotenv’ npm module) + environment variables when run locally
○ system-level env vars trump .env
○ set env vars at the process level (in the test harness)
○ load .env on lambda init
○ add .env to .gitignore, commit .sample-env to source control, initialise using a custom npm
script (npm run setup)
var config = require('./config.json');
25. Dynamic configuration
● DynamoDB or S3, + KMS for secrets
● lambda is aware of its name, so you can run multiple stacks in one account,
add an appropriate postfix to each lambda, and then look for this key in a
shared table / bucket
● still need to recycle lambda to ensure that it picks up the latest config, or hit
an external resource on each request
26. Error handling
● for S3 bucket notifications and custom events Lambda will retry three times
● for ordered event sources (DynamoDB or Kinesis streams), Lambda will retry
until the data expires (maximum of 7 days for Kinesis)
○ that’s how long a shard can be completely blocked with a bad record
● rule of thumb for Kinesis:
○ context.fail() for transient errors (network timeouts etc). Lambda will retry automatically
○ context.succeed() for “hard” (irrecoverable) errors, isolate the borked event and carry on
○ JSON.parse() is the worst offender
28. Get samples of the event object
exports.handler = function(event, context) {
console.log("event: ", JSON.stringify(event, null, 1));
context.succeed();
}
29. Ways to test
● unit tests: modularise your code and test it outside lambda using conventional
tools
● integration: invoke lambda locally and validate that it has no compilation
errors, can successfully run the provided event.json and call AWS services
● full stack: deploy to AWS and run there (helps to find missing libs, permission
issues)
30. A simple test harness
var lambda = require('./lambda.js');
describe('Some integration tests', function () {
// Set Mocha timeout to 5 seconds, as the whole suite can take a while to run
this.timeout(5000);
this.slow(3000);
it('should more or less work', function (done) {
var event; // set up event object
var context = getFakeContext(done);
lambda.handler(event, context);
});
});
31. Mock context object
function getFakeContext(done) {
return {
succeed: function () {
assert.ok(true);
done();
},
fail: function (err) {
assert.fail(err);
done();
}
};
}
32. Logging
● all console.log() statements are accessible in CloudWatch within a
couple minutes
● each lambda function creates a separate log group
● within the group, each instance creates a new log stream
● logs contain lots of (not always useful) information and are difficult to visually
parse and search
● no clear differentiation between various log levels
33. Simple custom logger
var winston = require('winston');
var logger = new (winston.Logger)({
transports: [
new (winston.transports.Console)({
handleExceptions: false,
json: false,
level: process.env.NODE_LOGGING_LEVEL || 'info',
timestamp: function () {
return new Date().toISOString().replace(/T/g, ' ');
}
})
]
});
// Do not colorise in Lambda environment, as it just screws up the output
if (process.env.AWS_LAMBDA_FUNCTION_NAME === undefined) {
logger.cli();
}
module.exports = logger;
34. CloudWatch logs
● export using CLI or one of the SDKs
● export to S3 and download
● live with the pain and just use web console
35. Deployment
Custom deployment script
● npm install --production
● zip contents of the folder, not the folder itself
● mutable code vs immutable (published) versions + aliases
● every version counts towards 1.5 GB limit for total size of all deployed
packages
● package.json to keep lambda metadata (name, description, files and the
main entry point / handler)
Or use a wrapper like claudia.js