AuthZed Blog

The spicedb-kubeapi-proxy is open source! The SpiceDB KubeAPI Proxy functions as a network proxy positioned between a Kubernetes client and a Kubernetes cluster and can provide fine-grained access management for Kubernetes API objects.

Play in your own SpiceDB Playground: SpiceDB Playground is now open source and self-hostable. Jump into modeling permissions right away - it’s the quickest way to start learning how to use SpiceDB!

In the domain of access control, attribute-based access control (ABAC) stands out for its adaptability. Utilizing object attributes and predefined rules, ABAC dynamically governs access permissions. SpiceDB introduces caveats, tailoring ABAC for specific permission subsets, enhancing scalability and performance. In this ABAC example, caveats seamlessly integrate ABAC policies with the efficiency of Zanzibar. For instance, relationships between users and documents incorporate caveated conditions like "is_public_today," ensuring dynamic decision-making. By marrying ABAC's flexibility with Zanzibar's efficiency, SpiceDB offers a comprehensive solution for access control in modern applications, addressing scalability and security concerns effectively.

In the latest episode of The Digital Executive Podcast, Jake Moshenko, co-founder and CEO of AuthZed, delves into the mission of the company and the development of SpiceDB, the cloud-native permissions database designed to scale permission management for developers. Jake discusses the evolution of cloud-native technologies and the persistent challenges in permissions and authorization. AuthZed's focus is on simplifying these complex issues, enabling applications at any scale to efficiently manage permissions. Jake also explores the potential of AI and machine learning to enhance AuthZed's offerings, aiming to make it the ubiquitous solution for permissions management across diverse software ecosystems.

In a conversation on the Snowpal Polyglot Software Development Podcast, Jake Moshenko, co-founder and CEO of AuthZed, shares his journey from pioneering the first private Docker registry to tackling the complexities of permissions management with AuthZed. Inspired by Google's Zanzibar paper, AuthZed offers a scalable solution for managing permissions flexibly across applications. Jake discusses the challenges and solutions for integrating AuthZed, emphasizing the importance of focusing on core competencies and leveraging specialized services for enhanced product security and development velocity.

In this article, AuthZed's co-founder and CEO Jake Moshenko addresses trade-offs to consider when modeling your permissions, when to consider fine-grained access control, costs associated with fine-grained access control, how to strike a balance, and main takeaways.

Jake Moshenko, CEO of AuthZed, shares his journey from an engineering enthusiast to leading a company at the forefront of authorization technology. He discusses the evolution of permissions management, highlighting the flexibility and security offered by AuthZed's SpiceDB, and addresses the critical distinction between authentication and authorization in safeguarding digital applications.

In this episode of Startup Chronicles Podcast, host Max Anthony sits down with Jake Moshenko, CEO and co-founder of AuthZed. From his beginnings at tech giants to pioneering his own ventures, Jake shares a riveting journey of innovation, leadership, and the genesis of AuthZed. Delve into the challenges and triumphs of his entrepreneurial path, the technical nuances of AuthZed's authorization solutions, and Jake's foresight on the evolving tech landscape. Gain invaluable insights from a seasoned entrepreneur who navigates the complexities of startup culture with wisdom and agility.

Watch AuthZed's CPO and co-founder Jimmy Zelinskie's talk at FOSDEM 2024, as he delves into the world of authorization systems, specifically focusing on the evolution of access control models and the genesis of SpiceDB. Jimmy, with his background in the Kubernetes ecosystem, shares insights into the challenges posed by traditional access control systems and the shift towards more dynamic and relationship-based models. He discusses the limitations of Role-based Access Control (RBAC) and introduces the concepts of Attribute-based Access Control (ABAC) and Relationship-based Access Control (ReBAC), highlighting their significance in modern web security.

Jake Moschenko, discusses the intricacies of permissions management and its critical role in digital security. Jake highlights how specialized solutions can mitigate the risks associated with custom-coded permissions systems.

Tune into The CTO Show's episode featuring Jake Moshenko, the CEO of AuthZed and co-founder of Quay. He takes us on a riveting journey from his engineering roots in Michigan to the forefront of tech entrepreneurship. Discover the story behind Quay, the first private Docker registry, and its journey through acquisitions by tech giants like CoreOS, Red Hat, and IBM. Jake delves into the seismic shifts in software deployment, from manual server management to the wonders of Kubernetes, and shares insights into the challenges of scalable authorization with AuthZed. This episode is packed with valuable lessons on risk tolerance, perseverance, and the impact of AI on cloud-native technologies, making it a must-listen for anyone interested in the future of technology, entrepreneurship, and innovation.

In this blog post, we’ll discuss how caching works in SpiceDB, AuthZed’s open source implementation of Google Zanzibar, and answer the most commonly asked questions about caching in SpiceDB.

Learn how to backup and restore your SpiceDB instance using zed, the SpiceDB companion CLI tool.

2024 is gonna be ✨our year✨ As we wrap up January, the team and the community are already off to a roaring start!

Our culture, as a tech startup, can be summarized into one sentence: “Trust each other.” We seek to support each other as we make a difference in the world of authorization, trusting each other, asking questions, testing assumptions, and embracing healthy tensions.

Learn how to perform a SpiceDB load test.