security

PBAC

Policy-Based Access Control

Definition

PBAC is an access control model that evaluates centrally-managed policies to make authorization decisions, combining attributes, context, and rules. Tools like OPA implement PBAC by evaluating Rego policies against request context.

PBAC is more flexible than RBAC and more centralized than ABAC, making it suitable for microservices authorization and multi-cloud environments.

Related Terms

ABAC

Attribute-Based Access Control

RBAC

Role-Based Access Control

OPA

Open Policy Agent

← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product