Permify

Most IT companies make these 3 access control mistakes that can be avoided easily. 1️⃣ Trusting Third Party Apps without Due Diligence.  Sometimes, IT companies give their 3rd party vendors way more access than is needed. Businesses shouldn't just assume that they don't possess any risk but do complete due diligence before providing access to sensitive data. In a recent event, TalkTalk experienced a similar type of attack that affected the data of 19M users. Investigators found the involvement of a 3rd party supplier. (~Reported by TheSun) 2️⃣ Over-Provisioning Access This one is a classic. It’s easier to provide more access to everyone than needed, But this could lead to a massive data breach. A compromised account with excessive permissions can turn out to be a gateway for attackers to access sensitive data. To make sure you never end up in this type of problem, I always recommend you use the principle of least privilege—give users access to only what’s necessary for their role and nothing more. 3️⃣ Not Having Regular Access Reviews Employees change roles, and some leave, but their access remains untouched. IT companies often overlook this, but this is crucial for long-term security. These outdated controls come with unnecessary risks, and they can be easily avoided. If your organization is having any of these problems, it might be time to rethink your IAM strategy.

With multi-cloud environments expanding, businesses face significant security challenges leading to identity-related breaches and slowing down operations. We've outlined the 3 pillars for better access control in your organization 👇 #AccessControl #CloudSecurity #IdentityManagement #DataProtection

Which Permify solution is right for you? Here is how Permify Cloud and Open-Source (OSS) compare 📊 Permify Cloud offers managed infrastructure for ease and scalability, while open-source gives you full control with a self-hosted option. 1️⃣ Infrastructure Cloud: Quick setup on secure infrastructure with backups, high availability, and maintenance handled for you. OSS: Fully DIY—manage installation, maintenance, uptime, backup, consistency, etc. 2️⃣ Product Updates Cloud: Frequent updates, multiple times per week. OSS: Long-term releases, latest features won’t be immediately available. 3️⃣ Premium Features Cloud: Full access to all features. OSS: Limited to core features, such as dashboards and data synchronization 4️⃣ Deployment Options Cloud: Choose from AWS, GCP, or Azure regions with disaster recovery and SLAs for availability. OSS: Host anywhere — on your own servers or any cloud provider. 5️⃣ Data Privacy Cloud: SOC 2 and GDPR compliant. See Permify Trust Center (link in comments) OSS: Data privacy is your responsibility, including compliance. 6️⃣ Support Cloud: Dedicated support from the Permify team. OSS: Community support only. 7️⃣ Costs Cloud: Pricing based on monthly active users. OSS: Cover server, CDN, backups, and other infrastructure costs yourself.

Day 119: Master access control with Permify! Explore this open-source tool to easily implement fine-grained, scalable authorization in your applications. From tenant isolation to ultra-fast checks, Permify keeps your permissions secure and centralized. Ready to strengthen your application’s security? Dive in today!

Meet the New Cloud Feature: Data Sync 🔄 Permify Sync Service automatically captures changes in your application's database and syncs authorization-related data with Permify in real time. By using Debezium, Kafka, and the Permify Sync Service your system can efficiently handle updates to permissions and roles without manual intervention or dealing with API requests.

Homegrown authorization systems are not enough as your company grows. Here is why 👇 1) Ad-hoc authorization systems scattered throughout your app's codebase are hard to manage, challenging to reason about, and difficult to iterate on. 2) Traditional authorization approaches like RBAC is not granular, not secure, and inefficient for creating resource-specific, hierarchical, and dynamic permissions. 3) Authorization data needed to determine whether a user has access can be stored in multiple services, making it hard to scale and lead to latency and performance issues. At Permify, we're addressing these issues by abstracting the authorization logic from your codebase and centralizing authorization as a service, while also providing a policy language to build your complex permissions and policies. You can interact with this service from your applications and services to perform any authorization-related actions, such as performing access checks, listing permissions, and more. If you're struggling with access control in your company, share your use case in the comments or shoot me a message. We'd love to know what's blocking you!

Permify has joined the Cloud Native Computing Foundation (CNCF) 🌍 We are proudly announcing that Permify has become a Silver member of the Cloud Native Computing Foundation (CNCF). This is a huge milestone for our open-source journey. A massive shoutout to our amazing community and contributors who’ve helped us build the future of authorization so far 💜

Data Filtering Pagination Support ⚙️ In our recent update to the Lookup Entity and Lookup Entity Stream APIs, we’ve added pagination support, available from version v1.0.2 onwards. You can find more details in our docs:

Are you struggling to manage permissions as your business grows? You're not alone 👇 One highly effective approach is implementing a Google Zanzibar-style authorization system. What is this Google Zanzibar exactly ? Google Zanzibar is the global authorization system used at Google for handling authorization for hundreds of its services and products including; YouTube, Drive, Calendar, Cloud and Maps. Google published Zanzibar white paper back in 2019, and in a short time it gained attention quickly. In fact some companies like Airbnb and Carta started to shift their legacy authorization structure to Zanzibar style systems. When is the best time to use Google Zanzibar? 👉 If your business is expanding fast and managing access control is becoming a headache. 👉 If you need to maintain security without sacrificing scalability and performance. 👉 If you need relationship-based permissions, such as user groups, hierarchies with inherited authorization rules, along with roles or attributes. 🔐 At Permify, we’re working to make Zanzibar available to everyone and help them to build scalable authorization systems.

Reached 4k+ stars 🌟 and still counting 🚀 We’re excited to share that Permify has reached 4k stars in Github! A big thanks for all the support you've shown so far 💜 We were preparing to celebrate 3k, but our momentum pushed us past 4k before we could even catch our breath. That was really fast - we’ve gained almost 1.5k stars in just two weeks 🔥 And we're still counting at a great pace! Currently, the Permify repository is listed in GitHub's weekly trends 📈 If you haven’t already, star our repo and join us in building the future of authorization 🔐 https://lnkd.in/dnCEhWhW #opensource #github #authorization