Dynamic Authorization

you own this product
Adaptive access control
Phil Windley
  • MEAP began September 2025
  • Last updated September 2025
  • Publication in Summer 2026 (estimated)
  • ISBN 9781633435179
  • 400 pages (estimated)
  • printed in black & white

pro $24.99 per month

  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose one free eBook per month to keep
  • exclusive 50% discount on all purchases
  • renews monthly, pause or cancel renewal anytime

lite $19.99 per month

  • access to all Manning books, including MEAPs!

team

5, 10 or 20 seats+ for your team - learn more


Look inside
Improve security and standardize policy enforcement by automating authorization and access control!

Stale permissions and manual access policy enforcement are a constant security risk. Dynamic authorization—automatic systems that eliminate permanent access grants and manual review-and-revise processes—can radically improve access control. This practical, focused book shows you how to switch from crude yes/no permissions to flexible, policy-driven rules that adapt instantly.

Dynamic Authorization: Adaptive access control shows you how to:

  • Establish RBAC, ABAC, and ReBAC for dynamic authorization
  • Design adaptive access control policies
  • Implement Policy Based Access Control
  • Integrate decision logic with organizational data
  • Establish clear authorization governance structures

Access control needs evolve as users require short-term data access, location-based services, temporary work assignments, or changing employment status. Dynamic authorization systems adapt access in real time. Dynamic Authorization: Adaptive access control presents a view of dynamic authorization that merges role-based, attribute-based, and relationship-based models into a single framework. You’ll learn exactly how dynamic authorization works, as well as the governance, architecture, and team structures necessary to sustain the approach in the enterprise.

about the book

Dynamic Authorization comes to life through the all-too-real access control struggles facing the fictional ACME Corp’s customer, HR, and engineering systems. Step-by-step walkthroughs make these examples concrete, while real-world incidents—like the Target data breach—show what’s at stake when authorization goes wrong. You’ll implement a dynamic authorization framework integrating the Cedar authorization policy language and the RBAC, ABAC, and ReBAC models, and you’ll design adaptive policies that reflect real business rules. Plus, you’ll build governance structures with clear ownership, aligned teams, and processes to review, audit, and evolve at scale.

about the reader

For IT workers, executives, directors, and product managers who know the basics of systems architecture.

about the author

Phil Windley is co-founder and organizer of the Internet Identity Workshop and Executive Director of the IIW Foundation, advancing human-centered digital identity. He was Founding Chair of the Sovrin Foundation (2016–2020) and most recently served as Senior Software Development Manager at AWS Identity.
choose your plan

team

monthly
annual
$49.99
$399.99
only $33.33 per month
  • five seats for your team
  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose another free product every time you renew
  • choose twelve free products per year
  • exclusive 50% discount on all purchases
  • renews monthly, pause or cancel renewal anytime
  • renews annually, pause or cancel renewal anytime
  • Dynamic Authorization ebook for free
choose your plan

team

monthly
annual
$49.99
$399.99
only $33.33 per month
  • five seats for your team
  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose another free product every time you renew
  • choose twelve free products per year
  • exclusive 50% discount on all purchases
  • renews monthly, pause or cancel renewal anytime
  • renews annually, pause or cancel renewal anytime
  • Dynamic Authorization ebook for free