Authorization is crucial to any business application, requiring high availability, correct decision-making to avoid security vulnerabilities, and low latencies. While IAM has traditionally been centralized, authorization tends to be application-specific. Centralization offers benefits such as standardization, cost reduction, and enhanced governance. However, challenges include the need for expressivity, performance, isolation, and integration. Centralized authorization systems must cater to both organizational policies and application-specific permissions, running with low latency, providing multi-tenancy for isolation, and seamless integration into various applications. Platforms like Aserto offer solutions to these challenges, making centralizing authorization a viable option for organizations.
https://www.aserto.com/blog/the-case-for-centralizing-authorization