Session Abstract: Privacy laws, such as the need to obtain consent from individuals before accessing their personal data, have made it more challenging for organizations to pursue digital transformation. Ensuring that customer data is protected and legally compliant can be difficult, especially when it comes to providing auditing reports. While there is information available on how to collect consent, there are few guidelines on how to effectively enforce it during authorization.
In this master class, you will learn how a fine-grained authorization model based on principals, actions, resources, and context can help your organization better adhere to privacy regulations. You will learn how to represent the relationships between entities such as the user, client, requesting party, and resource provider. You will also learn how to incorporate consented access delegations into your authorization logic, taking into account both spatial and temporal dimensions. By the end, you will have a deeper understanding of how consented delegations can help you more effectively resolve complex access requests.
While this session is composed around the new Amazon Verified Permissions service and Cedar policy language, you won’t need AWS knowledge to attend this session or to apply this strategy with your centralized authorization solution of choice.