Neha from AWS and Jim, CTO of MongoDB, discuss using Cedar for fine-grained authorization. Neha introduces Cedar as AWS's solution for scalable authorization, contrasting it with traditional methods where permissions are embedded in application code, leading to inconsistencies and deployment challenges. She highlights Cedar's security-first design, scalability, and policy examples, including its internal use at Amazon in AWS Verified Access and Project Khyper. Jim then shares MongoDB's journey, explaining how they adopted Cedar to address the limitations of role-based access control and the complexities of building their own authorization system. He details how MongoDB uses Cedar for Atlas Resource Policies, enabling customers to set guardrails and enforce configuration standards across their organizations, and also touches on future enhancements and benefits. Neha concludes by introducing Amazon Verified Permissions as a managed service for Cedar policies, emphasizing its integration with AWS services and a new pricing model.
Sign in to continue reading, translating and more.
Continue
