From the course: Modern Cloud Security: Shift-Left, Observability, and Automated Defense
Join today to access over 24,900 courses taught by industry experts.
PaaS: Security implications
From the course: Modern Cloud Security: Shift-Left, Observability, and Automated Defense
PaaS: Security implications
- [Instructor] While platform as a service, or PaaS, simplifies development and deployment, it introduces unique cybersecurity challenges. Applications, middleware, and data often remain the user's responsibility while the cloud provider manages the platform. In PaaS, developers rely heavily on platform-provided tools, APIs, and environments. Misconfigurations, insecure coding practices, and the lack of monitoring, can lead to vulnerabilities. For instance, if a developer deploys an application with debug mode enabled, sensitive internal information could be exposed to attackers. Similarly, insufficient access controls can allow unauthorized users to modify application configurations, potentially leading to breaches. An example of PaaS gone wrong is the 2021 incident involving Microsoft Azure Cosmos DB, where researchers discovered that a feature called Jupiter Notebooks exposed critical data to attackers due to a flaw in permissions. Though Microsoft quickly addressed the issue, it…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
(Locked)
Deep dive into cloud service models4m 38s
-
IaaS: Benefits and security considerations5m 7s
-
(Locked)
PaaS: Security implications4m 47s
-
(Locked)
SaaS: Managing security in SaaS applications4m 23s
-
(Locked)
The shared responsibility model3m 25s
-
(Locked)
Distinguishing responsibilities across service models4m 32s
-
(Locked)
Real-world examples showing shared responsibility3m 27s
-
(Locked)
-
-
-
-
-
-
-
-