🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

New video drop and it's a hot take 🔥 Don't use JWTs for Authorization! youtu.be/_cgcg-h4vJs?si…

We need to have more conversations around Model Context Protocol (MCP) and security. So we're going to do just that on next week's livestream! We're chatting with Dominik Guhr from INNOQ about building a MCP Server with Access Management, using SpiceDB

Kelsey Hightower talks about the lineage of Open Source projects originating from Google whitepapers. From etcd to Kubernetes - Google's Infrastructure For Everyone Else

Everyone's talking about MCP and so are we! Dominik Guhr from INNOQ is joining us to talk about Model Context Protocol, and SpiceDB. We have a little demo lined up but will also talk about some of the authorization implications of MCP. Stream starts soon!

Thanks for the shoutout! Checkout the annotated Google Zanzibar paper here: zanzibar.tech

We are very excited to have Sohan Maheshwar from authzed join us at KCD Bengaluru 2025! 🙌 Sohan will be sharing insights on "How to Secure and Optimize your Retrieval-Augmented Generation (RAG) Pipelines with Fine-Grained Authorization." So, if you're working with RAG models

Here's a break down of Policy-Based Access Control. PBAC works great when decisions are stateless, fast, and local but it falls short when there is contextual data involved in the decision making process. Watch the video to understand why this is the case, and what alternatives

How do you update a user interface based on what permissions the user has? Join our livestream to learn: * NextJS * Tailwind CSS * Postgres (via Neon) * SpiceDB It's Office Hours format so bring any questions you might have. youtube.com/live/ooWQ903bl…

Starting in five minutes! ➡️

🚀 I'm excited to share that we’ve raised Work-Bench Fund IV, a $160M fund to back the next generation of enterprise software founders at Seed. 🤗 I joined Work-Bench just under six years ago during Fund II. I was drawn to the idea of working closely with technical founders

One of the biggest mindset shifts in transitioning from operator to VC was embracing the long game. Startups take time. It might take a portfolio company 2-3 years to go from Seed to Series A, or 10+ years for a fund to finally see meaningful returns. To me, that means you have

most services would be better off hard down vs having stale permissions. this means you are extremely dependent on external auth providers for your availability. if you have to do it. pick one that doesn’t go down.

Today we were featured on the Arm Community blog talking about how we love Arm ❤️ Arm helps AuthZed build and operate authorization infrastructure, from day-to-day productivity gains to cost-effective, performant cloud compute. Learn more here: community.arm.com/arm-community-…

Have you written a line of code that looks like this? Then you're probably doing Authorization wrong. Our latest video explores why this is the case - from the lens of technical debt, people, and also performance at scale. We discuss this here: youtu.be/qGtGMWlg1dA?si…

In the mood to learn something new? Check out our workshops repo on Github. We currently have 3 self-guided workshops inc. 'Updating WebViews based on Permissions' and the newest on 'Preventing AI Agents from Accessing Unauthorized Data' Don't forget to ⭐ the repo here:

I am pleased to announce EACL: Enterprise Access Control, a SpiceDB-compatible Authorization System in Clojure backed by Datomic: github.com/CloudAfrica/ea… The core EACL Datomic implementation is only 434 LOC, and tests are 325 LOC, totalling 759 LOC. This open-source work was

Ever wondered how Google keeps access checks across their apps fast and reliable even with billions of users, and millions of requests per second? The secret is how their internal authorization system Zanzibar is architected. This video goes into the technical details of some

Cloud-native teams run more services than ever - containers, databases, observability tools. authzed needed to balance performance, efficiency, and cost. ➡️Their solution: Arm everywhere, across laptops, CI/CD, and cloud ➡️The result: Faster builds, lower costs, better scale.

How does Google Zanzibar  prevent 500,000 internal RPCs per second from hitting the database? The magic lies in how Zanzibar handles hotspots. Here's a deep-dive video into the techniques used to achieve this. youtube.com/watch?v=8sgkog…