US 12,069,188 B2
Detection and prevention of unauthorized execution of serverless functions
Huamin Chen, Westborough, MA (US); and Michael Hingston Mclaughlin Bursell, Great Yeldham (GB)
Assigned to RED HAT, INC., Raleigh, NC (US)
Filed by Red Hat, Inc., Raleigh, NC (US)
Filed on Dec. 28, 2021, as Appl. No. 17/563,754.
Application 17/563,754 is a continuation of application No. 16/669,015, filed on Oct. 30, 2019, granted, now 11,240,045.
Prior Publication US 2022/0123952 A1, Apr. 21, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/32 (2006.01); H04L 9/30 (2006.01)
CPC H04L 9/3268 (2013.01) [H04L 9/30 (2013.01); H04L 9/3242 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
issuing, by a function of a serverless computing environment, a first certificate that uniquely identifies an event source that is external to the serverless computing environment;
storing, by the serverless computing environment, the first certificate in an authority database; and
subsequent to storing the first certificate in the authority database;
receiving, at a controller of the serverless computing environment, an event from the event source for execution by the function of the serverless computing environment, the function executing in a first container of the serverless computing environment;
obtaining, by the controller, a copy of the first certificate from the authority database;
creating, at the controller, a message including the event and the copy of the first certificate;
transmitting, by the controller, the message to a second container of the serverless computing environment, the second container implementing a proxy for the function;
receiving, at the proxy of the second container, the message;
validating, by the proxy of the second container, the copy of the first certificate; and
in response to validating the copy of the first certificate, transmitting, by the second container, a signal to the first container for causing the function to execute the event.