Blog

Company Updates & Technology Articles

Blog post cover

Authorization in Slack: A real-world example of RBAC with fine-grained controls

Slack's authorization model combines coarse-grained roles with fine-grained controls. This is a popular combination among SaaS applications. In this post, we use Topaz's Slack template to model Slack's permissions using relationships. ReBAC provides a more elegant solution and also paves the way for a seamless transition to fine-grained access controls.

Mar 6th, 2024

Blog post cover
Blog post cover
Blog post cover

How Airbnb and Uber authorize their apps: Real-world examples of ReBAC and ABAC

Explore real-world examples of attribute-based access control (ABAC) and relationship-based access control (ReBAC). Learn how Airbnb uses ReBAC to authorize external users and Uber uses ABAC to authorize internal users.

Feb 15th, 2024

Blog post cover

Product Pulse #6: Aserto supports Active Directory and LDAP

We’re excited to announce that as of January 2024, Aserto and Topaz fully support LDAP as a source of users and groups! The integration has been tested with the leading two implementations of LDAP - Active Directory and OpenLDAP. Read all about it in this post.

Feb 7th, 2024

Blog post cover

Authorization and the principle of least privilege

Zero trust has moved the burden of securing applications from the perimeter to the application. Based on this framework, we must assume a breach, verify entities explicitly, and implement the principle of least privilege. In this post, we explore how fine-grained authorization brings the principle of least privilege to life, enabling us to establish a robust security posture.

Feb 1st, 2024