This article is available first on Cloud7 - read it here.

Authorization is still a brand new space and we saw lots of solutions launching with different approaches to tackling authorization delivering on RBAC, ABAC, and ReBAC. A common thread with all these solutions has been the decoupling of the logic from the application code base out into a standalone service that makes decisions for the entire application. This approach allows the logic to evolve independently of the code base and fits in perfectly with today’s heterogeneous service landscapes.

At Cerbos, we have a keen understanding of the direction that the authorization space is heading in. When it comes to forecasts for 2023, we believe that the trend in the industry is moving towards a focus on core competencies and a delegation of other responsibilities to specialized software. Within this context, we see authorization as an area that should be delegated to specialized software solutions, with a preference for those that are built in an open-source ecosystem.

Cloud-native technology has become firmly established and we anticipate that more and more companies will be looking to this ecosystem to address their authorization needs. Additionally, we expect to see an increase in security products that utilize machine learning models for anomaly and threat detection, with some of these products potentially being able to analyze access logs and make suggestions for access policies.

This article is available first on Cloud7 - read it here.