@cerbosdev profile picture
Cerbos @cerbosdev

Authorization for enterprise software and AI.

Joined June 2021
  • Tweets 1,952
  • Following 618
  • Followers 789
453 Photos and videos
Pinned Tweet
Cerbos@cerbosdev
18 Jul 2024
🚀🥳#CerbosHub has successfully transitioned from Beta to #GeneralAvailability! Huge thank you to our community for your support, and to 500 organizations that have put their trust into Cerbos Hub! 🧡 Find out more: bit.ly/3Ws9R55 #Cerbos #GA #Authorization
1
5
12
1,736
Cerbos Newsletter June 2026 📢 bit.ly/4uCxWUJ#AuthZEN gets Outstanding Project award at #EIC#Meta AI breach could've been avoided ✅Preparing for #EUAIAct deadline ✅#Authorization for AI gateways ✅Picking a deployment model Subscribe: bit.ly/3MGNwuW
1
27
Spin up an #AIagent and it needs a model to think with and tools to act with. Which model can it call? Which #MCP servers can it even open? Are the tool-call arguments inside policy? How #agentgateway Cerbos decide all three at the gateway: bit.ly/43qNy2E
1
3
48
📊 We launched Insights in Cerbos Hub When a policy tightens, your authorization traffic shifts. Insights turns the decisions flowing through your #PDP s into charts, so a denial spike is a quiet fix, not a support queue. 🔗bit.ly/3PNkDTd #Authorization
3
49
Our co-founder & CPO @alexolivier is on the Main Stage at #DeveloperWeek New York this week 🌎 Authentication is mostly solved. #Authorization isn't. He's taking an honest look at where it actually stands, what's changed, and what's finally usable. If you're there, swing by!
2
35
Authorization runs at runtime, on every request. So where it lives matters. Get the #deployment model wrong and your audit logs sit in the wrong jurisdiction and you fail the #audit. Our new guide breaks down the models and what drives the choice ⤵️ bit.ly/4ul13fg
1
18
An #AI support bot gave away #Instagram accounts because someone asked it nicely. No exploit, just persistence The fix isn't a better prompt. The #access decision has to live outside the model, in a layer the attacker can't talk to: bit.ly/4387h71 #Meta #Authorization
2
169
Write #authorization #policies in #ClaudeCode by describing the permission in plain English. The skill drafts schemas, derived roles, and tests, then compiles against the real Cerbos binary before you commit. bit.ly/3RICPxR
1
55
Agents follow #access, not instructions. If the policy lives inside the agent, the #agent will always talk itself past the gate. How #IAM and security teams should be thinking about this before the #EUAIAct deadline. bit.ly/3QgXcBL
1
2
213
Rivian shipped bad firmware to its fleet. Tesla's OTA disabled safety systems on 2M cars. Chevy's drained customer batteries. The connected car is an enterprise endpoint, and RBAC alone can't govern it. Guide to getting automotive authorization right: bit.ly/4vcHHts
2
51
How to layer fine-grained, attribute-based #authorization on top of your #AIgateway, so you can control which models, tools, #MCP servers each user & agent can reach, and keep delegation chains from leaking privilege bit.ly/4nTyHXM
1
43
Identity gets the AI agent into the building. Authorization protects the vault. @alexolivier 's #EIC2026 takeaways. Why counting agents isn't controlling them, where the decision lives, and the audit evidence the EU AI Act will ask for. bit.ly/4uz4O1i
2
4
133
Last day of #EIC2026 4 days of conversations, 1 clear takeaway Modern identity is sorted. The hard part some teams have yet to tackle now is what users can do once authenticated, especially when agents act on their behalf (#Authorization. That's what we do) #IdentityConference
2
76
Most #identitysecurity spend lands on admin time. Provisioning, role assignment, access reviews, posture management. None of it decides what happens when a token hits an API at 3am on a Sunday. That decision is #authorization 👇 bit.ly/4nISbOz
1
25
Your #IdP answers "who is this person?" It doesn't answer "can they do this specific thing, to this resource, right now?" That's #authorization. Here's where identity providers fall short, and how to shortlist a dedicated authZ solution. 👇 bit.ly/49HchTC
1
48
An #IdP signs a token and stamps a list of claims that every downstream system trusts for an hour. That list is an #authorization decision. Most identity teams don't manage it like one. No policy behind it. No decision log. No clear owner. bit.ly/4tOlzof
1
142
Cerbos is at #eic2026 🍭Find @emre & @alexolivier at our candy bar on Level C, opposite Starter Program sponsors. Alex is also on three panels. #OpenID for the Enterprise, Signals/Policies/Identity Agency, and #AuthZEN deep dive. @kuppingercole #IdentitySecurity
1
2
70
Your authorization is only as strong as the decision made at the moment a request arrives. Everything else is hope. New post on #runtime #authorization platforms 👇 bit.ly/3PQaNjf
1
58
Most #AI agent #governance plans have a kill switch in them. In healthcare or finance, flipping it just creates the next incident. The fix is a dimmer switch. Fade access down, narrow the policy, keep the lights on. bit.ly/4danyhF #authorization
1
1
69
The Cerbos PDP rule table index now runs on a custom #bitmap with a meta layer that proves two bitmaps don't overlap before doing any per-word work. Three months of rewrites, hot path now 6.6 µs per op. Full writeup from Sam: bit.ly/434EMqF
3
81
Cerbos is at #eic2026 next week 🍬Catch our candy bar on Level C and chat authorization, AuthZEN, or AI agents. Two panels @alexolivier will be on: "Signals, Policies, and Identity Agency", "Leverage OpenID AuthZen". See you in Berlin! @kuppingercole #IdentitySecurity @emre
1
69
Load more