Case Study: Netflix adds ABAC to its authorization stack with AuthZed’s SpiceDB Caveats

Netflix - Customer Case Study

The customer, Netflix, required an authorization solution that could handle their complex application identity types. While prototyping with AuthZed's open-source product, SpiceDB, they discovered it was poorly suited for implementing Attribute-Based Access Control (ABAC), which was a core requirement for their security and efficiency goals.

AuthZed, with sponsorship from Netflix, designed and developed a new feature for SpiceDB called Caveats. This Zanzibar-native approach to ABAC allows authorization policies to include dynamic system attributes, bridging the gap between policy-based authorization and relationship-based control. The collaboration successfully delivered a new tool for Netflix and enriched the open-source project, providing all SpiceDB users with a powerful new option for performing rich authorization checks.

Netflix