With more and more workloads moving to the cloud, so has the adoption rates of Infrastructure-as-a-Service (IaaS) platforms such as AWS, Microsoft Azure, and Google Cloud Platform. These platforms host all kinds of cloud-based custom and third-party applications, are highly scalable, and give organizations much flexibility in adjusting IT infrastructure needs quickly and cost-effectively.
Organizations can integrate their own custom and third-party applications into the NextLabs platform through the use of a software development kit (SDK). With this SDK, companies can centrally manage authorization policies for their own applications, just as they can for the applications NextLabs supports out-of-the-box.
The SDK allows developers to implement attribute-based access controls and authorization management into their applications. Developers create a policy enforcement point (PEP) for each of their applications to interface with NextLabs Control Center policy platform. These PEPs perform authorization checks based on user activities to enforce the authorization decisions of the “policy decision points” (PDPs). The PDPs provide a number of management, policy decision-making, event logging, and other functions that are independent of the application or system being enforced.