Fine-Grained Authorization with Relationship Based Access Control

Explore fine-grained authorization and Relationship-Based Access Control (ReBAC) in this DEF CON 32 conference talk that addresses complex access management challenges. Learn how ReBAC offers solutions beyond traditional Role-Based and Attribute-Based Access Control systems, particularly for scenarios involving intricate permission structures like friends-of-friends access patterns. Discover practical implementations through live demonstrations and learn to deploy custom fine-grained authorization services. Using a unique canine-inspired perspective, examine how ReBAC handles nuanced access conditions without embedding complex business logic into applications. Gain insights into defining relationship structures and implementing sophisticated authorization patterns that scale effectively for modern applications.