Rule: Lambda Functions Concurrent Execution Limit Configured

NIST Cybersecurity Framework (CSF) v1: Lambda Functions Concurrent Execution Limit

Description:

Troubleshooting Steps:

2. 1.

   Identify the symptoms: Monitor response times, error rates, and resource utilization metrics for your Lambda functions. Look for any indications of performance degradation or resource exhaustion.

4. 2.

   Check Lambda function configurations: Review the configuration for each Lambda function to ensure the concurrent execution limit is appropriately set.

6. 3.

   Review application design: Assess if your application design may be causing excessive concurrent executions. Consider optimizing your code, using execution throttling mechanisms, or implementing application-level limits.

8. 4.

   Monitor concurrency usage: Utilize Lambda's concurrency metrics and CloudWatch logs to gain visibility into your function's concurrency usage. Identify any unexpected spikes or patterns that may require further investigation.

10. 5.

    Review resource allocation: Ensure that the resources allocated to your Lambda functions, such as memory and timeout settings, are optimized for your workload. Adjust these configurations as needed to enhance performance.

12. 6.

    Test function concurrency: Execute load tests or simulate multiple concurrent requests to validate if your Lambda functions can handle the anticipated workload. Analyze the results to identify any performance bottlenecks.

14. 7.

    Adjust the concurrent execution limit: If you determine that the existing concurrent execution limit is too low or too high, you can adjust it accordingly using the Lambda service console or AWS CLI.

Necessary Codes (AWS CLI):

2. 1.

   Install and configure the AWS CLI on your local machine.

4. 2.

   Open the terminal or command prompt.

6. 3.

   Run the following command to update the concurrent execution limit for a specific Lambda function:

aws lambda put-function-concurrency --function-name <function-name> --reserved-concurrent-executions <concurrent-execution-limit>

<function-name>

<concurrent-execution-limit>

2. 1.
   Verify the change by running the following command:

aws lambda get-function --function-name <function-name> --query 'Concurrency'

Step-by-step Guide for Remediation:

2. 1.

   Identify the Lambda functions within your environment that require concurrent execution limit configuration.

4. 2.

   Access the AWS Management Console and navigate to the AWS Lambda service.

6. 3.

   Select the Lambda function for which you need to configure the concurrent execution limit.

8. 4.

   Click on the "Configuration" tab to view the function's settings.

10. 5.

    Scroll down to the "Concurrency" section and click on the "Edit" button.

12. 6.

    Set the desired concurrent execution limit based on your application requirements and in adherence to the NIST CSF v1 recommendations.

14. 7.

    Save the changes and monitor the function's performance over time.

aws lambda put-function-concurrency --function-name <function-name> --reserved-concurrent-executions <concurrent-execution-limit>

2. 1.
   Validate the applied changes by running the following command:

aws lambda get-function --function-name <function-name> --query 'Concurrency'

2. 1.
   Repeat these steps for any additional Lambda functions that require concurrent execution limit configuration.