Posted On: Nov 28, 2022
Today, AWS is announcing the preview of Amazon Verified Permissions, a scalable, fine-grained permissions management and authorization service for custom applications. With Amazon Verified Permissions, application developers can let their end users manage permissions and share access to data. For example, application developers can use Amazon Verified Permissions to define and manage fine grained permissions to determine which Amazon Cognito users have access to which application resources.
This central fine-grained permissions management system simplifies changing and updating permission rules in a single place without needing to change the code. Teams can use the permissions system to shorten their development timelines and implement more dynamic permissions across application resources. Amazon Verified Permissions also gives IT administrators a comprehensive audit capability that scales to millions of policies using automated reasoning.
Amazon Verified Permissions uses a custom policy language called Cedar to define fine-grained permissions for application users. The service manages access within the application by storing and evaluating these fine-grained permissions to determine what each user is allowed to do. Access requests are evaluated in a few milliseconds which allows continual verification as required by Zero Trust. Amazon Verified Permissions can be used with any identity provider, such as Amazon Cognito.
Amazon Verified Permissions is available during the preview period in the following AWS Regions: US East (Ohio), US East (N. Virginia), US West (Oregon), Asia Pacific (Tokyo), and Europe (Ireland).
To join the waitlist to access Amazon Verified Permissions, visit the sign-up page. For more information, visit the Amazon Verified Permissions webpage.