How Amazon Verified Permissions fits into the Identity and Policy Orchestration landscape. Be ready for AWS' newest Access Control product with Strata Identity. For more information, visit [ Ссылка ]

At AWS re:Invent, Amazon announced the Cedar policy language and Amazon Verified Permissions, which allows customers to add fine-grained access controls to custom-developed applications.

This innovation has far-reaching implications for AWS customers looking to improve their security posture, reduce operating costs and ensure compliance.

The new IDQL standard keeps Cedar-defined fine-grained policies consistent with other enterprise policies used by OPA, Zanzibar, or other policy formats for easy governance. And with Maverics Identity Orchestration, making Amazon Verified Permissions work on your existing custom apps doesn’t require rewrites or custom code.

Chapters:
00:00 Intro
01:46 What is Amazon Verified Permissions and how does it compare to other fine-grained authorization systems?
05:37 What is Cedar and how does it compare to IDQL
08:40 How is policy interoperability possible between IDQL, Cedar and other languages?
11:53 Demo: A prototype to show how IDQL can be translated to Cedar
21:36 How can Amazon Verified Permissions integrate with existing applications?
24:20 Summary
25:57 Q&A
29:40 More resources and closing thoughts


--

In this webinar we discussed the exciting topic of Amazon Verified Permissions and how it relates to the larger identity and policy orchestration landscape.

1 - Overview of what Amazon Verified Permissions (AVP) is and what we've learned from the documentation shared by the Amazon team. Many of us first heard about AVP in December when the announcement was made at re:Invent and we've been closely following its development since then.

2- Dive into how IDQL and Hexa interact and relate to AVP. As many of you know, we've been part of a working group for almost two years now, creating a new policy orchestration language, IDQL, and the reference software for Hexa, which is now an open source project within the CNCF.

3- How Strata's core product, the Maveric's Identity Orchestration platform, can be used to extend an investment in AVP. By adding AVP to existing applications and extending the policies created in AVP to other cloud platforms, organizations can take advantage of the benefits of AVP without being limited to the Amazon ecosystem.

One of the reasons we're so excited about Amazon Verified Permissions is that it aligns perfectly with the mission of IDQL and Hexa - to bring normalization to the multi-cloud environment and unify disparate and proprietary policies. Using IDQL as the translatable declarative model for access policies and Hexa as the orchestration open-source software, organizations can quickly adopt the new model announced by Amazon.

We hope you'll enjoy this informative and engaging discussion on Amazon Verified Permissions and its place in the identity and policy orchestration landscape.

свернуть