Securing Lambda Functions Using Code Signing

CLOUD LABS

Securing Lambda Functions Using Code Signing

In this Cloud Lab, you will use AWS Signer to sign a Lambda function and a Lambda layer. You’ll then deploy signed Lambda functions to see how they are different from unsigned Lambda functions.

10 Tasks

intermediate

1hr 30m

Certificate of Completion

Desktop OnlyDevice is not compatible.

No Setup Required

Amazon Web Services

Learning Objectives

The ability to use AWS Signer to securely sign code

The ability to create signing profiles and signing jobs to manage the code signing process

Working knowledge of deploying signed Lambda functions and Lambda layers

Technologies

Lambda

IAM

Desktop Only

No Setup Required

Amazon Web Services

Labs Rules Apply

Stay within resource usage requirements.

Do not engage in cryptocurrency mining.

Do not engage in or encourage activity that is illegal.

Cloud Lab Overview

AWS Signer is a fully managed code-signing service to ensure the trust and integrity of code. The code is validated against a digital signature to ensure the authenticity of the code. Code signing is an effective security measure that helps us determine that the code or files are not tampered with and that the resources are from a trusted source. In this Cloud Lab, you’ll explore the AWS Signer service and the features associated with it.

You’ll start by creating an S3 bucket, which will be used to store signed and unsigned resources. Then, you’ll create a signing profile, which will be used to sign all the required resources. After that, you’ll explore how AWS Signer is used to sign Lambda functions and Lambda layers. You’ll also learn how you can deploy signed functions and how they are different from unsigned Lambda functions.

After completing this Cloud Lab, you will be able to configure AWS signing profiles, signing jobs, signed Lambda functions, and signed Lambda layers. At the end of this Cloud Lab, your architecture will look like this:

Cloud Lab Tasks

1.Introduction

Getting Started

2.Create an S3 Bucket

Set Up an S3 Bucket

3.AWS Signer Configuration

Set Up a Signing Profile

Configure a Signing Job

Deploy a Signed Lambda Function

4.Signed Layers and Function

Upload Resources and the Lambda Function

Set Up a Signed Lambda Layer

Attach a Signed Layer and Deploy the Lambda Function

5.Conclusion

Clean Up

Wrap Up

Labs Rules Apply

Stay within resource usage requirements.

Do not engage in cryptocurrency mining.

Do not engage in or encourage activity that is illegal.

Before you start...

Try these optional labs before starting this lab.

Cloud Lab

Mastering AWS Lambda Layers

intermediate

2hr

Cloud Lab

Getting to Know AWS Lambda

beginner

2hr

Relevant Courses

Use the following content to review prerequisites or explore specific concepts in detail.

Hear what others have to say

Join 1.4 million developers working at companies like

"Your method is simple, straight to the point and I can practice with it everywhere, even from my phone, that's something I have never had in other learning platforms."

Felipe Matheus

Software Engineer

"I highly recommend Educative. The courses are well organized and easy to understand."

Adina Ong

Senior Engineering Manager

"I prefer Educative courses because they have a nice mix of text & images. I find that with full video courses, it can often be too easy to go into passive learning mode."

Clifford Fajardo

Senior Software Engineer

"I love the content on Educative and I feel as if I am definitely improving in my craft."

Thomas Chang

Software Engineer

Learn in-demand tech skills in half the time

PRODUCTS

Mock Interview

New

Courses

Skill Paths

Projects

Assessments

Newsletter