I just wanted to show you our open source implementation of the Google Zanzibar paper.
We just released the first working version:
We spent a lot of time and effort to read, learn, and analyse the paper (https://research.google/pubs/pub48190/) and the release brings that all together.
There are still many things missing, but with a great community we hope to build the “Kubernetes” of permissions and access control!
I quote a bit from the paper to make clear what Ory Keto is:
"Determining whether online users are authorized to access digital objects is central to preserving privacy. [...]. Zanzibar provides a uniform data model and configuration language for expressing a wide range of access control policies from hundreds of client services at Google, including Calendar, Cloud, Drive, Maps, Photos, and YouTube. Its authorization decisions respect causal ordering of user actions and thus provide external consistency amid changes to access control lists and object contents. Zanzibar scales to trillions of access control lists and millions of authorization requests per second to support services used by billions of people. It has maintained 95th-percentile latency of less than 10 milliseconds and availability of greater than 99.999% over 3 years of production use."
If you have any questions, I am happy to answer them.