Aaron Mulgrew by Aaron Mulgrew | | Blog

people using cloud server

Deep Secure developed Threat Removal as a Service so that developers could design-in security controls into their applications and workflows using a serverless computing model for the ultimate scalable solution.

Threat Removal is a security technology that transforms data and documents rendering them free of malware and making them 100% safe. It is designed around a zero-trust security model meaning it doesn’t try and detect the presence of malware, instead, it treats all documents as dangerous and transforms them all into new files.

Threat Removal as a Service (TRaaS) is a developer platform that combines Deep Secure's zero-trust technology with a range of APIs. The service is delivered as a unique security-as-code, serverless, cloud-native threat removal solution that transforms data to prevent the transmission of malware.

It allows developers to integrate security as code into their applications and workflows – anything from an Internet-facing portal to a bulk migration to the cloud - using a cloud-based subscription model.

See document transformation in action
Sign up for a Free Trial


TRaaS has been designed and implemented in AWS Lambda, an event driven serverless framework (using the near-infinite scalability of Amazon Web Services servers) that is intended as a simple way for application developers and operations to deal with large differences in loads on the infrastructure.

For the developer being able to call on security controls that are built on Lambda serverless computing means never having to worry that security will be an inhibitor. It will always scale to meet demand.

No Residual Risk

AWS Lambda is on shared resources, meaning that at any time, the temporary environment you are given to execute your code may be different to the previous environment. This has an added security advantage as the environment is unlikely to be the same each time. Contrast this with using a machine image in the cloud to enforce security controls. With the machine image you have the associated risk that if malware in a document succeeds in compromising the machine, it remains compromised thereafter. With the serverless approach, a security control is used to perform a limited function – say transforming a document – with a minimal attack surface, fractional traffic exposure and limited lifetime, substantially reducing risk.

Rapid Deployment

Another important benefit of the serverless, stateless approach is that it makes it easier for developers to build applications quickly. Using a set of simple APIs, the developer can rapidly integrate zero trust security controls directly into their applications.

With the serverless approach it is possible to replace the complex, time exhaustive process of integrating multiple security technologies into an application with just a couple of simple HTTP requests. This makes it easier for both the developer who can build the application much faster, and the application tester who can concentrate on testing the application rather than spending their time building the environment.

Reduced Costs

By Leveraging AWS 99.95% reliability levels, TRaaS is always available to transform documents and render them free of malware. That means no prolonged and costly outages for upgrades to security products. It also means that the onus for any patching that has to be done to the infrastructure is put squarely on the shoulders of the service provider leaving the developers free to focus on their application. In short, there are no administrative costs associated with TRaaS.


View all posts