• AWS Open Source Blog Cedar Joins CNCF as a Sandbox Project Cedar, an open source authorization policy language and SDK, has joined the Cloud Native Computing Foundation (CNCF) as a Sandbox project. • CNCF provides a neutral home for early stage and developing open source projects. • Cedar fulfills the need for a fast, safe, and analyzable authorization policy language in cloud-native environments by allowing developers to define, externalize, and manage access control logic separately from application code. • The Authorization Challenge, Why Cedar? • As cloud native technology matures and enterprise adoption increases, authorization has become increasingly complex. • More people and machines are performing more actions in production environments, using powerful software to manipulate dynamically changing resources.
Article Summaries:
- AWS’s Cedar, an open‑source authorization policy language, has been accepted into the Cloud Native Computing Foundation (CNCF) as a Sandbox project. The move gives Cedar a neutral, foundation‑backed home for early‑stage cloud‑native projects and expands community participation. Cedar enables developers to separate fine‑grained access control from application code, supporting RBAC, ABAC, and ReBAC models with fast, scalable evaluation. Its language specification is formally verified with Lean and its Rust implementation is rigorously tested. Current adopters include Cloudflare, MongoDB, StrongDM, Cloudinary, and AWS services such as Bedrock AgentCore Policy and Systems Manager.
Sources: