DigitalOcean Announces Enhanced Role-Based Access Control to Streamline Company and Security Operations
DigitalOcean Holdings, Inc. (NYSE: DOCN) has announced updates to its role-based access control (RBAC) system, introducing a new set of predefined roles to streamline user access management. The update includes three new roles: Modifier, Billing viewer, and Resource viewer, each designed to provide specific levels of access and permissions.
These roles complement existing basic roles and aim to enhance security and simplify permission management. DigitalOcean's CISO, Tyler Healy, emphasized that this update allows businesses to scale while minimizing risk and meeting compliance requirements. The company plans to release additional identity and access management (IAM) features in the coming months, including per-bucket Spaces access keys and custom RBAC roles.
DigitalOcean Holdings, Inc. (NYSE: DOCN) ha annunciato aggiornamenti al suo sistema di controllo degli accessi basato sui ruoli (RBAC), introducendo un nuovo insieme di ruoli predefiniti per semplificare la gestione degli accessi degli utenti. L'aggiornamento include tre nuovi ruoli: Modificatore, Visualizzatore di fatturazione e Visualizzatore di risorse, ciascuno progettato per fornire livelli specifici di accesso e permessi.
Questi ruoli completano i ruoli di base esistenti e mirano a migliorare la sicurezza e semplificare la gestione dei permessi. Il CISO di DigitalOcean, Tyler Healy, ha sottolineato che questo aggiornamento consente alle aziende di scalare riducendo al minimo i rischi e rispettando i requisiti di conformità. L'azienda prevede di rilasciare ulteriori funzionalità di gestione dell'identità e degli accessi (IAM) nei prossimi mesi, inclusi i tasti di accesso per bucket Spaces e ruoli RBAC personalizzati.
DigitalOcean Holdings, Inc. (NYSE: DOCN) ha anunciado actualizaciones a su sistema de control de acceso basado en roles (RBAC), introduciendo un nuevo conjunto de roles predefinidos para agilizar la gestión del acceso de usuarios. La actualización incluye tres nuevos roles: Modificador, Visualizador de facturación y Visualizador de recursos, cada uno diseñado para proporcionar niveles específicos de acceso y permisos.
Estos roles complementan los roles básicos existentes y tienen como objetivo mejorar la seguridad y simplificar la gestión de permisos. El CISO de DigitalOcean, Tyler Healy, enfatizó que esta actualización permite a las empresas expandirse mientras minimizan el riesgo y cumplen con los requisitos de conformidad. La empresa planea lanzar características adicionales de gestión de identidad y acceso (IAM) en los próximos meses, incluidas las claves de acceso por bucket de Spaces y roles RBAC personalizados.
디지털오션 홀딩스 주식회사 (NYSE: DOCN)는 사용자 접근 관리 효율성을 높이기 위해 역할 기반 접근 제어(RBAC) 시스템에 대한 업데이트를 발표했습니다. 이번 업데이트에는 수정자, 청구 보기, 자원 보기의 세 가지 새로운 역할이 포함되어 있으며, 각각 특정 수준의 접근 권한과 허가를 제공하도록 설계되었습니다.
이 역할들은 기존의 기본 역할을 보완하고 보안을 강화하며 허가 관리의 간소화를 목표로 합니다. 디지털오션의 CISO인 타일러 힐리는 이 업데이트가 기업이 위험을 최소화하고 규정 준수를 충족하면서 확장할 수 있도록 한다고 강조했습니다. 회사는 향후 몇 달 내에 신원 및 접근 관리(IAM)의 추가 기능을 출시할 계획이며, 여기에는 버킷별 스페이스 접근 키 및 사용자 정의 RBAC 역할이 포함됩니다.
DigitalOcean Holdings, Inc. (NYSE: DOCN) a annoncé des mises à jour de son système de contrôle d'accès basé sur les rôles (RBAC), introduisant un nouvel ensemble de rôles prédéfinis pour rationaliser la gestion des accès des utilisateurs. La mise à jour comprend trois nouveaux rôles : Modificateur, Visiteur de facturation et Visiteur de ressources, chacun étant conçu pour fournir des niveaux d'accès et des permissions spécifiques.
Ces rôles complètent les rôles de base existants et visent à améliorer la sécurité et à simplifier la gestion des permissions. Le CISO de DigitalOcean, Tyler Healy, a souligné que cette mise à jour permet aux entreprises de se développer tout en minimisant les risques et en respectant les exigences de conformité. L'entreprise prévoit de lancer d'autres fonctionnalités de gestion des identités et des accès (IAM) dans les mois à venir, y compris des clés d'accès par bucket de Spaces et des rôles RBAC personnalisés.
DigitalOcean Holdings, Inc. (NYSE: DOCN) hat Aktualisierungen seines rollenbasierten Zugriffssteuerungssystems (RBAC) angekündigt und ein neues Set an vordefinierten Rollen eingeführt, um das Benutzerzugangsmanagement zu optimieren. Das Update umfasst drei neue Rollen: Modifier, Rechnungsanzeiger und Ressourcenanzeiger, die jeweils bestimmte Zugangs- und Berechtigungsstufen bieten.
Diese Rollen ergänzen die bestehenden Basisrollen und zielen darauf ab, die Sicherheit zu erhöhen und das Berechtigungsmanagement zu vereinfachen. Der CISO von DigitalOcean, Tyler Healy, betonte, dass dieses Update den Unternehmen ermöglicht, zu wachsen, während Risiken minimiert und Compliance-Anforderungen erfüllt werden. Das Unternehmen plant, in den kommenden Monaten zusätzliche Identitäts- und Zugriffsmanagement (IAM) Funktionen einzuführen, einschließlich Zugriffskeys für Buckets in Spaces und benutzerdefinierte RBAC-Rollen.
- Introduction of new predefined RBAC roles to enhance user access management
- Improved security and simplified permission management for growing businesses
- Planned release of additional IAM features to strengthen security offerings
- None.
Insights
DigitalOcean's enhanced Role-Based Access Control (RBAC) is a significant step towards improving security and operational efficiency for cloud-based businesses. The introduction of predefined roles like Modifier, Billing viewer and Resource viewer addresses common use cases and simplifies access management. This update is particularly beneficial for startups and growing digital businesses that need to scale their teams without compromising security.
The new RBAC features align with the principle of least privilege, allowing administrators to grant users only the permissions necessary for their specific roles. This granular control can significantly reduce the risk of unauthorized access and potential security breaches. Moreover, the Resource viewer role supports compliance efforts by facilitating audit processes without exposing sensitive operational controls.
While this update enhances DigitalOcean's competitive position in the cloud services market, it's important to note that many enterprise-level competitors already offer similar or more advanced RBAC features. The real value here lies in DigitalOcean's focus on simplifying these controls for their target market of smaller, growing businesses.
DigitalOcean's RBAC enhancements demonstrate a keen understanding of the evolving needs of growing digital businesses. The predefined roles offer a balance between simplicity and functionality, addressing key operational challenges without overwhelming users with complexity. The Modifier role, in particular, is a smart addition that allows for resource management while protecting against accidental deletions - a common concern in fast-paced development environments.
Looking ahead, the planned features like per-bucket Spaces access keys and custom RBAC roles will further strengthen DigitalOcean's IAM offerings. These additions will provide more granular control over object storage and allow businesses to tailor access permissions to their specific organizational structures. This roadmap suggests DigitalOcean is committed to evolving its platform to meet the sophisticated needs of scaling businesses while maintaining its reputation for user-friendliness.
For investors, these improvements indicate DigitalOcean's strategic focus on retaining and attracting customers as they grow, potentially reducing churn and increasing average revenue per user over time.
New offering provides robust and efficient method for managing user access
RBAC builds on identity and access management (IAM), which helps to ensure the right individuals have the appropriate access to technology resources within an organization. With RBAC, users are assigned roles based on their job responsibilities, qualifications, and expectations. The new predefined roles announced today build on the existing basic roles (owner, member and biller), and are designed to fit the most common use cases requested by customers. They include:
- Modifier: This role permits users to update but does not allow them to delete resources. It is ideal for teams that wish to protect sensitive resources from deletion while still allowing members to manage them.
- Billing viewer: Permits read-only access to billing information only, giving users insight into billing details for cost analysis, transparency, and governance without exposing sensitive operational controls.
- Resource viewer: This role permits read-only access to resources, ideal for audit or compliance purposes. Users with this role will not have permission to create, update, or delete resources.
This approach simplifies permission management and helps to enhance security by ensuring that users have only the access necessary to perform their job functions.
“Scaling your business means adding developers and other job functions to your teams, but we believe that should not mean adding complexity in managing identity and access. With our new predefined roles, you can assign privileges in a way to minimize risk, and meet audit or compliance requirements,” said Tyler Healy, CISO at DigitalOcean. “We’re excited to bring additional security and identity features that simplify cloud security, so developers can spend more time innovating.”
In the coming months, DigitalOcean will be releasing several features to strengthen its IAM offerings:
- Per-bucket Spaces access keys: Spaces bucket access keys on a per-bucket basis.
- RBAC custom roles: Allows customers to configure custom, persistent, reusable permission sets for their business needs which are not met by RBAC predefined roles.
About DigitalOcean
DigitalOcean simplifies cloud computing so businesses can spend more time creating software that changes the world. With its mission-critical infrastructure and fully managed offerings, DigitalOcean helps developers at startups and growing digital businesses rapidly build, deploy and scale - whether creating a digital presence or building digital products. DigitalOcean combines the power of simplicity, security, community and customer support so customers can spend less time managing their infrastructure and more time building innovative applications that drive business growth. For more information, visit digitalocean.com.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240827817498/en/
Media
Dan Jensen
press@digitalocean.com
Investors
Melanie Strate
investors@digitalocean.com
Source: DigitalOcean Holdings, Inc.
FAQ
What new RBAC roles has DigitalOcean (DOCN) introduced?
How do the new RBAC roles benefit DigitalOcean (DOCN) customers?