AuthZed Blog

AuthZed provides permissions systems that help secure and improve your RAG and agentic AI systems

Announcing the AuthZed Cloud API in Tech Preview—an API for managing AuthZed Dedicated Cloud infrastructure. Following the cloud computing pattern of lifecycle management APIs, this new tool allows you to manage permissions systems and restrict API-level access to SpiceDB within your authorization infrastructure.

AuthZed tackles broken access control through innovative authorization infrastructure. After launching open-source SpiceDB in 2021, they created AuthZed Dedicated Cloud—offering enterprises the security benefits of private clouds with public cloud convenience. This middle-ground solution provides isolated authorization data processing with dedicated resources, perfect for regulated industries requiring enhanced security.

How ARM helps AuthZed build and operate authorization infrastructure, from day-to-day productivity gains to cost-effective, performant cloud compute.

Zed CLI provides seamless interaction with SpiceDB clusters, allowing you to manage schemas, relationships, and permissions checks. Our v0.30.2 release adds composable schema support, automatic retries, backup functionality, and upcoming Windows package integration via Chocolatey.

Watch AuthZed CPO Jimmy Zelinskie and Upgrade's Pierre-Alexandre Lacerte discuss modern authorization challenges, relationship-based access control, and why companies shouldn't build their own authorization systems in this insightful KubeCon Europe 2025 interview with Techstrong.

Meet Dibs the Muad'dib, SpiceDB's new mascot that embodies our commitment to resilience, adaptability, and precision in solving complex authorization challenges. Drawing inspiration from Frank Herbert's Dune universe, this vigilant desert creature symbolizes how SpiceDB navigates the harsh terrain of modern access control with efficiency and intelligence.

We are excited to announce that as of the SpiceDB 1.40 release, users now have access to a new experimental feature: Relationship Expiration. When writing relationships, requests can now include an optional expiration time, after which a relationship will be treated as removed, and eventually automatically cleaned up.

Today we are announcing the experimental release of Relationship Expiration, which is a straightforward, secure, and dynamic way to manage time-bound permissions directly within SpiceDB.

DeepSeek has emerged as a phenomenon since its announcement in late December 2024 and security has been at the forefront of recent conversation. At AuthZed, we recognize that trust and security fundamentally shape how organizations evaluate AI models, which is why we're sharing our perspective on this crucial discussion.

I'm happy to announce that AuthZed recently renewed our SOC2 compliance and our SOC2 Type 2 and SOC3 reports are now available on security.authzed.com. Having just endured the audit process again, I figured it would be a good time to reflect on my personal feelings toward compliance and how my opinion has evolved.

The dual-write problem is present in any distributed system and is difficult to solve. We discuss where the problem arises and several approaches.

Here's how you can deploy SpiceDB on Amazon ECS (but you probably shouldn't in prod!)

The SpiceDB v1.39 release delivers enhanced monitoring through native histograms, smarter health checks, and transaction metadata improvement.

Want to build enterprise-ready AI that respects data access permissions? Learn how Relationship-based Access Control (ReBAC) provides superior security for Retrieval-Augmented Generation (RAG) systems by enabling pre-filtered queries and granular access control through relationship-based access controls. Read on to discover why ReBAC outperforms traditional authorization models for AI applications.

AuthZed's CEO and co-founder joins the Cube at the NYSE for a deep dive into the critical role of access control in the age of AI. Discover how AuthZed is building "guard rails for AI" to ensure secure and reliable access to sensitive data, prevent unauthorized access, and enable granular permissions. He explores real-world applications in healthcare, finance, and the sharing economy, and shares insights on the company's origins and their unique approach to solving authorization challenges. Watch the full interview to learn more.

What do Benjamin Franklin's satirical letter about waking up early and a failing CI test have in common? When our automated tests mysteriously started breaking after the end of Daylight Saving Time, we uncovered unexpected timestamp behavior and embarked on a systematic debugging journey to find a fix.

The release of SpiceDB v1.38 debuts new foundational API functionality for SpiceDB: Transaction Metadata. When writing relationships, you can now include arbitrary metadata that will be stored alongside the transaction and published to consumers of the Watch API.