The session shows the risks of a serverless infrastructure and how to deal with them. In particular, the topic of encryption of data and applications in the cloud will be addressed.
This is done by comparing the possibilities offered by large cloud providers (AWS, Azure) as well as other solutions from other providers. In addition to pure data encryption, the aspect of manageability, applicability and auditability is also considered.
In particular, the last point plays a major role in regulatory requirements such as those arising from PCI-DSS or the forthcoming GDPR.