Carla Urrea ( Auth0 by Okta): Securing AI: A Journey Through Access Control Systems
Remember when you started working on that application and only admins could do that one action? Then that quickly evolved to having others being able to do that other action and you ended up with a bunch of different roles, attributes, etc to handle all those cases? Ha, welcome to the world of access control systems!
In this talk, we'll follow the journey of a project that begins with no access control, progresses to Role-Based Access Control (RBAC), struggles with Attribute-Based Access Control (ABAC), and ultimately finds its footing with Fine-Grained Authorization (FGA). You'll see how this journey becomes even more important in modern applications, especially when thinking about things like AI. In this process, you'll learn how OpenFGA addresses the growing complexity with a relationship-based model that's both flexible and scalable.