SE Radio 664: Emre Baran and Alex Olivier on Stateless Decoupled Authorization Frameworks
Software Engineering Radio - the podcast for professional software developers
00:00
Understanding Authorization and Authentication
This chapter explains the essential differences between authentication and authorization, using relatable analogies like passport control to enhance comprehension. It dives into various authorization models, such as RBAC and ABAC, discussing their applications and the importance of selecting the right one for specific system requirements. Additionally, the chapter highlights the risks of poor authorization implementation, exemplifying the consequences through real-world scenarios from neobanks and ride-sharing applications.
Transcript
Play full episode
