Enrico La Sala

CTO @hiop

Navigating Networking and Security in Serverless SaaS Platforms

Serverless architectures changed the way SaaS solutions are built, yet networking and security remain complex and critical to their success.
At Hiop, we've been building a serverless data platform using AWS services, overcoming challenges that could have risked our project's integrity.

In this talk, I'll walk you through our journey and share practical strategies for tackling networking and security challenges in an AWS serverless environment.

I'll cover:
● AWS Serverless Networking Basics: How services like AWS Lambda, Amazon API Gateway, and AWS Fargate reshape traditional networking.
● Managing Connectivity on AWS:
○ VPC Integration: Best practices for connecting Serverless functions with VPC for secure resource access.
○ AWS PrivateLink and VPC Endpoints: Securely connecting to AWS services without exposing traffic to the public internet.
○ Edge Computing with AWS Lambda@Edge: Bringing computation closer to users to reduce latency.
● Advanced Security Measures:
○ Dynamic IAM Role Assignment: Implementing on-the-fly IAM roles to enforce least privilege and fine-grained access control.
○ Secure Communication Channels: Using AWS Certificate Manager to enforce HTTPS for encrypted data transmission.
○ Secrets Management: Securely handling sensitive configuration data with AWS Secrets Manager and Parameter Store.
● Scalability Planning:
○ Auto Scaling for Serverless Components: Designing serverless applications that adapt to fluctuating demand with AWS Lambda and AWS Fargate.
○ Networking Limits and Quotas: Key considerations to ensure robust performance in a serverless setup.

Attendees will leave with actionable insights to streamline networking and security, enabling them to build secure, resilient, and high-performance SaaS platforms on AWS.

• enrico.lasala@outlook.com