Start with Identity
Authorization

AWS Verified Permissions

Founded 2023Seattle, Washington, USAPublic (Amazon/AWS)Score 4.1/5Evaluated 2026-07-03Website ↗

Capability scores

Methodology →
Authentication
2.5
SSO & Federation
2.5
Authorization
4.5
Lifecycle & Provisioning
2.5
MFA & Passwordless
2.0
Governance & Audit
3.5
Developer Experience
4.0
Deployment Flexibility
3.0
Pricing Transparency
4.0
Support & Ecosystem
4.0

Scored 0–5 against a published rubric. Independent analysis, no vendor sponsorship.

Overview

Amazon Verified Permissions is a managed, fine-grained authorization service for custom applications, built on the open-source Cedar policy language. It lets developers define and evaluate permission policies outside application code.

What it is good at

It brings policy-based access control (PBAC and ReBAC-style patterns) as a managed AWS service: define who can do what on which resource in Cedar, evaluate at runtime, and keep authorization logic centralized and auditable. Cedar is open source and analyzable, and the service fits naturally into AWS-native and Amazon Cognito applications.

Where it falls short

It is AWS-centric and centered on Cedar, so teams wanting a cloud-neutral engine or a broad policy tooling ecosystem may prefer independent options like OpenFGA, Cerbos, or OPA.

Pricing

Transparent, usage-based pricing per authorization request.

Best for, and who should look elsewhere

Choose it for managed, Cedar-based authorization in AWS applications. Look elsewhere for a cloud-neutral or ecosystem-rich engine (see Cerbos or OpenFGA).

Bottom line

A managed Cedar authorization service, strong for AWS-native applications wanting externalized, fine-grained access control.

By SWI Community Team · Last evaluated 2026-07-03

Independent, community-driven analysis. No vendor sponsorship. Compiled from public research and community input and verified on a best-effort basis, so details may be incomplete or out of date. Scores are opinions, not advice. Trademarks belong to their owners; mention does not imply affiliation or endorsement. See the full disclaimer, or send corrections to [email protected].