Cerbos – an adaptive authorization software company – announced Cerbos Cloud, which is a managed service offering for Cerbos. The company is known for building an open-source authorization layer to easily implement roles and permissions in software applications. And it separates authorization logic from the core application code, making the authorization layers more scalable, more secure, and easier to change as the complexity grows. Plus Cerbos Cloud streamlines the implementation and management of authorization policies.
Cerbos’ founders Emre Baran (CEO) and Charith Ellawala (CTO) had met while working at Qubit where they created its data infrastructure which processed over 25 billion events daily in real-time. There as well as at Google, Elastic, and CGI, the founders encountered the same difficulties with developers writing their own authorization code as there was no scalable, extensible, and easy-to-use solution available. Every new authorization requirement from the business led to more complex logic, numerous iterations, and lengthy rewrites.
Frustrated with the time-consuming, complicated, and messy process of implementing, maintaining, and scaling access control logic, Baran and Ellawala founded Cerbos in 2021 with the mission to make authorization simpler to implement and manage so developers can focus on building their core products and driving business value. And later that year, Cerbos introduced its open-source authorization solution.
Cerbos offers a unique stateless approach that enables limitless scale. And as application usage and authorization logic complexity grow, Cerbos can be scaled up to handle the increased volume without any limits or additional infrastructure. At the same time, Cerbos takes a policy-based approach that keeps all authorization rules centralized and manageable, decoupling them from the codebase. And this enables roles and permissions rules to be updated without rewriting code, all while maintaining strong audit logs, a requirement for regulated industries.
Cerbos Cloud simplifies the process of managing authorization policies, testing changes, and distributing updates in real time. And it is a scalable solution for developers who want to save time, streamline their workflows and confidently roll out authorization updates, thus letting them focus on delivering great products and improving the end-user experience.
In March, Cerbos closed a $7.5 million extended seed round led by OMERS Ventures with participation from angel investors Ryan King (co-founder and CTO of Chime), Zeynep Inanoglu Ozdemir (former CMO of Palo Alto Networks), Zach Holman (early GitHub engineer), Zach Lloyd (founder and CEO of Warp) and Lewis Tuff (CTO of Brevan Howard Digital). And the total funding raised to date is $11 million; the initial seed round was $3.5 million in 2021 led by Crane. Cerbos is planning to use the new funding to advance its offerings.
KEY QUOTES:
“Writing and managing repetitive code for the ‘plumbing’ of their software is the bane of most developers’ existence. In the case of authorization code, the resulting inconsistencies and errors can also negatively affect the sleep cycles of CIOs, CTOs, CCOs and CSOs when the time of an audit rolls around. Replacing this mess with a centrally managed authorization layer that is pre-integrated with the existing corporate identity provider and directory would therefore be a big deal for both dev and ops personas alike. I applaud Cerbos for taking on this challenge.”
– Torsten Volk, managing research director at Enterprise Management Associates
“If it wasn’t for Cerbos, one thing is for sure – we would have launched later than we did. As a result, we would have less customers. The maintenance is also a very important aspect. Our technical team would be dealing with daily tasks regarding access controls, access logs. Now, we don’t have to spend any time on that.”
– Engin Attar, co-founder and head of product and growth at Debite, a financing platform for early-stage and high-growth startups and businesses
“Decoupling authorization makes life easier for both developers as well as product managers and security teams who create the requirements. Once implemented, the developers can focus on the rest of their job without having to deal with every change in access control logic. We are launching Cerbos Cloud today to take away the operational burden of managing, testing and deploying changes. Developers can now spend even more of their valuable time delivering great products instead of maintaining the infrastructure of the authorization layer.”
– Emre Baran, co-founder and CEO of Cerbos
“Cerbos has created an elegant, low-code solution to a widespread problem the founding team experienced first-hand in previous roles, which is always a solid starting point when we are looking for investments with break-out potential. And as user authorization becomes increasingly important in the modern tech stack, the Cerbos team has a relentless focus on providing the most scalable solution. We feel privileged to play a role in this journey that’s only just getting started.”
– Harry Briggs, Managing Partner at OMERS Ventures
