CNCF On-Demand Webinar: Build authorization at scale with SpiceDB on Amazon EKS

Authorization
That Scales

Unblock your business with an authorization system inspired by Google's Zanzibar white paper.

Trusted By

Neo FinancialRedpandaWithClutchTuroMatillionHackerRankEvisortAviseonXClear StreetSpotAI

SpiceDB: inspired by Google's Zanzibar
Evolved by AuthZed

The most mature open source Zanzibar implementation designed for both consistency and performance at scale.

Authorize anything, anywhere

Define fine-grained access for any object in your application or across your product suite and manage permissions using a centralized schema.

Minimize latency, maximize correctness

Specify consistency requirements per authorization check; tunable consistency features balance performance and correctness according to your use case.

Policy that scales

Determine attribute-based access (ABAC) with SpiceDB Caveats - our novel design for blending policy with a Zanzibar-based system.

Who has access?

SpiceDB returns lists of authorized subjects and accessible resources, helpful when pre-filtering permission-based results.

Ops-friendly permissions systems

Instrumented with observability tooling, a powerful Kubernetes Operator, and load testing capabilities, SpiceDB prioritizes both developer and platform engineering experiences.

Enterprise-ready products available

Love SpiceDB but not the idea of running a highly available, globally distributed, and mission-critical service? The AuthZed team is here to take the pager!

GreenPinkFrost

Our Customers

Permissions systems
on easy mode.

Highly available,
securely managed
permissions systems

AuthZed Dedicated prioritizes resiliency and safety because we recognize your users are counting on us, too.

Fault tolerance
We deploy all components of AuthZed Dedicated permissions systems across multiple instances and availability zones.
Distributed deployment
AuthZed can distribute permissions systems across multiple regions to ensure service survival during regional outages.
Workload isolation
Your workloads remain safe from noisy neighbors: all resources are fully isolated and dedicated to your system.
Global availability
Choose any region currently supported by AWS or GCP. Azure support coming soon!
Security & compliance admin features
Designate bounded access to SpiceDB APIs using access tokens and review all activity in audit logs.
Private networking
Only allow trusted networks to connect to permissions systems, eliminating entire classes of security risks.

The latest from AuthZed

AuthZed Blog

AuthZed Raises Series A Funding from General Catalyst

/assets/team/jake-moshenko.jpg
Jake Moshenko
June 27, 2024
AuthZed announces $12 million of Series A fundraising to build and commercialize our next round of big bets in modern authorization.
8 minutes

The Day Benjamin Franklin Broke our CI

/assets/team/joey-schorr.jpg
Joey Schorr
November 7, 2024
What do Benjamin Franklin's satirical letter about waking up early and a failing CI test have in common? When our automated tests mysteriously started breaking after the end of Daylight Saving Time, we uncovered unexpected timestamp behavior and embarked on a systematic debugging journey to find a fix.
9 minutes

Feature Highlight: Transaction Metadata

/assets/team/jimmy-zelinskie.jpg
Jimmy Zelinskie
November 7, 2024
The release of SpiceDB v1.38 debuts new foundational API functionality for SpiceDB: Transaction Metadata. When writing relationships, you can now include arbitrary metadata that will be stored alongside the transaction and published to consumers of the Watch API.
4 minutes

Learn Together


Join our thriving community to learn about SpiceDB, Zanzibar, production deployments, and more!

Users Online

Get started for free

Join 1000s of companies doing authorization the right way.