Cerbos Hub available on-premise, Cerbos PDP v0.51.0, Cerbos + Aperture by Tailscale for AI agent access control, authorization policy for aviation
View in browser

Over the last month, we've been focused on expanding deployment flexibility and addressing the critical authorization challenges facing enterprise security leaders.

 

🔐 The year started off with lots of releases! We launched Cerbos Hub on-premise, enabling organizations with data residency, regulatory, or air-gapped requirements to run the full authorization management platform inside their controlled infrastructure while maintaining centralized governance across all workloads. We also announced our partnership with Tailscale to bring policy-driven access control to AI agents, ensuring they can only perform actions they're explicitly authorized to take.

 

We released updates including Cerbos PDP v0.51.0 with enhanced policy lifecycle management and audit capabilities, ePDP rules for fine-grained control in embedded policy bundles, Cerbos Hub Playground enhancements for faster policy development, and a Query Plan Adapter for Convex. 

 

We also published new resources to help teams implement authorization effectively. These include guidance on adopting a shared authorization layer that adapts to context, mapping business requirements to authorization policy for aviation, and treating authorization as a continuously governed control. Finally, we have updated our ecosystem page to help teams evaluate how Cerbos fits into their infrastructure.

 

For security and business leaders, we published a deep dive into the hidden risks of static authorization and how silent risk accumulation undermines security posture. For those new to our newsletter, we’re highlighting resources on evaluating authorization providers, solutions to critical challenges CISOs face in 2026, and maintaining compliance.

Customer spotlight: 4G Capital

4G Capital replaced their legacy authorization service with Cerbos, reducing operational costs by a quarter-million dollars per year while strengthening security and compliance controls.

Learn more

Product Updates

Cerbos Hub

 

On-premise Cerbos Hub has been released. Organizations can now run Cerbos Hub inside their own environment while continuing to manage authorization centrally across apps, services, workloads, and non-human identities. Cerbos Hub now supports all deployment options:

  • On-premise data centers
  • Private and bring-your-own cloud environments
  • Fully air-gapped networks
  • Hybrid architectures
  • Cloud-hosted

The Cerbos Hub Playground has seen a steady stream of improvements over the past few months, transforming it from a simple policy testing tool into a full-featured authorization development environment. Details can be found here.

 

Finally, ePDP Rules are now live - a new way to configure exactly what policies are served to which clients, with enterprise-grade security built in.

 

Learn about Cerbos Hub

Get started with Cerbos Hub

Cerbos PDP

 

Version v0.51.0 of Cerbos PDP introduces new Admin API capabilities for policy lifecycle management, enhanced audit logging with request context, and several important updates to scope handling that improve consistency across the evaluation engine.

 

You can find the full release notes here: v0.51.0

Cerbos PDP is open source, check out our GitHub

Helpful Content

[Ebook] How to adopt externalized authorization

 

Adopting externalized authorization is an architectural change that requires careful planning. Our ebook provides a structured, 10-chapter approach to navigating this transformation.

Inside, you will find:

  • Frameworks, policy examples, and lessons learned from guiding hundreds of teams through externalized authorization adoption.

     

  • Externalized authorization foundations, in the form of: Authorization requirements, different role types & their implementation, data sources, ownership matrix, and everything about PDP, PEP, and PAP.

     

  • Instructions to stand up a minimal PDP and PEP, author and test policies with real data, choose deployment and enforcement models.

Upcoming Events

Meet our team members and check out their talks to get valuable insights:

  • Alex Olivier, Cerbos’ CPO and Co-Founder, will be attending and speaking at Gartner IAM Summit in London, March 9-10. Along with another member of OpenID AuthZEN, Alex will be covering the topic of “Externalize authorization, secure your AI processes, and achieve runtime authorization with OpenID AuthZEN” If you stop by to listen - let us know what you think!

Stay connected

    • Struggling with fragmented authorization or audit readiness? Talk to our solution team → Book a free workshop
    • Learn more about Cerbos Hub, a complete authorization management system for authoring, testing and deploying policy
    • Browse our documentation
    • Experience policy writing via an in-browser Playground
    • Join our Slack Community to keep up-to-date with latest developments
    • Explore more of our content: Framework for evaluating authorization providers, practical solutions to critical challenges CISOs face in 2026, guidance on maintaining compliance.

     

    You are receiving this email because either we have met, chatted, or you've visited our website cerbos.dev and asked us to keep you up-to-date. If you have been forwarded this email, you can subscribe and receive future updates directly from us. If you prefer not to receive these updates, you can unsubscribe below, but we hope you stay!

     

     

    X X
    LinkedIn LinkedIn
    YouTube YouTube
    Email Email
    GitHub Git Hub

    Cerbos, 86-90 Paul Street,  London, UK, EC2A 4NE, United Kingdom.

    Unsubscribe  Manage Preferences