Authorization in Software features chats with industry subject matter experts in Authorization. Some of the covered topics are: how authorization is implemented at specific companies (e.g.: Airbnb, Slack, Github), how industry standards relate to authorization, and the history of authorization in software.Damian Schenkelman hosts Authorization in Software. Damian is the creator of the OpenFGA project and a Principal Architect on the Auth0 Lab team, where he does research and development of forward looking products. Before Auth0, Damian spent many years working for and at Microsoft on Azure, and patterns & practices related initiatives. He loves spending his spare time with family, friends and catching up on all things NBA.
https://authorizationinsoftware.auth0.com/public/49/Authorization-in-Software-f9b69587
episode 5: How Box Does Authorization
In this episode of Authorization in Software, Damian Schenkelman sits down with John Huffaker, Distinguished Engineer at Box. They discuss how Box, a major file-sharing and collaboration platform, approaches authorization.
The conversation touches upon:
- The importance of security for a platform like Box which handles sensitive data for countless users and businesses.
- A look into the different layers of security, including application and infrastructure security.
- The challenges and solutions to ensure that Box remains impenetrable
- A detailed overview of the multiple layers involved in making different kinds of authorization decisions, from viewing files and folders to understanding user permissions and API accesses.
- And more...
Tune in to get an inside look at the ways Box keeps their customers' data remains safe and the authorization mechanisms they employ to achieve this.