BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//bsidescharm2026//speaker//39FJPU
BEGIN:VTIMEZONE
TZID:EST
BEGIN:STANDARD
DTSTART:20001029T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20061029T070000Z
TZNAME:EST
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
END:STANDARD
BEGIN:STANDARD
DTSTART:20071104T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=11
TZNAME:EST
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000402T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060402T080000Z
TZNAME:EDT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20070311T030000
RRULE:FREQ=YEARLY;BYDAY=2SU;BYMONTH=3
TZNAME:EDT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-bsidescharm2026-BDTXDB@pretalx.com
DTSTART;TZID=EST:20260425T140000
DTEND;TZID=EST:20260425T170000
DESCRIPTION:Serverless abstracts bare metal\, not the burden. In fast\, eve
 nt-driven clouds\, threats often outpace traditional controls. Misconfigur
 ations\, fuzzy trust boundaries\, and brittle integrations open new attack
  surfaces: vulnerable libraries\, leaky secrets\, wildcard IAM\, and misco
 nfigured triggers. In this immersive 3-hour workshop\, you will build a ha
 nds-on cloud lab with serverless components to design and secure an end-to
 -end AI pipeline using LynxLab. Through gamified\, branch-by-branch challe
 nges\, teams will identify vulnerabilities\, trace real-world attack paths
 \, and map findings to STRIDE and OWASP Serverless categories. We will exa
 mine how ephemeral execution\, event chains\, and implicit trust can be ab
 used\, and how to close those gaps without slowing delivery. You will leav
 e with practical patterns\, and defensive strategies for identity\, secret
 s\, triggers\, and observability\, plus a focused playbook to reduce blast
  radius and ship resilient\, modern serverless applications.
DTSTAMP:20260417T061949Z
LOCATION:Training
SUMMARY:Breaking Silos\, not Systems: Dissecting the Cloud Beast - Nimish S
 harma\, Shivam Dhar\, Niveadita Razdan
URL:https://pretalx.com/bsidescharm2026/talk/BDTXDB/
END:VEVENT
BEGIN:VEVENT
UID:pretalx-bsidescharm2026-DF39TU@pretalx.com
DTSTART;TZID=EST:20260426T100000
DTEND;TZID=EST:20260426T105000
DESCRIPTION:Managed compute removes bare metal infrastructures\, not respon
 sibility. In FaaS platforms\, speed and elasticity make it easy to misconf
 igure\, and ephemeral function chains with granular integrations create ex
 posure points that legacy controls miss. This technical session unpacks re
 al attacker tradecraft against function-based apps\, including dependency 
 flaws\, credential leakage\, overly broad permissions\, and unsafe event b
 indings. Rather than slideware\, we focus on field-tested playbooks: threa
 t mapping\, least-privilege design\, guardrails for events\, secrets handl
 ing\, and observability that actually catches misuse while teams keep ship
 ping. Built for engineers and defenders working on highly automated stacks
  where sightlines are thin and blast radius can grow quickly\, the talk al
 so introduces LynxLab\, our open lab that lets you build a mini FaaS pipel
 ine\, probe it with realistic kill chains\, and practice concrete counterm
 easures to harden managed runtimes without losing delivery speed
DTSTAMP:20260417T061949Z
LOCATION:Track 2
SUMMARY:Harboring No Illusions: Navigating risks in a FaaS world - Nimish S
 harma\, Shivam Dhar
URL:https://pretalx.com/bsidescharm2026/talk/DF39TU/
END:VEVENT
END:VCALENDAR