Styra DAS

The Styra Declarative Authorization Service (DAS) is a solution designed to provide unified policy management across the cloud-native stack. According to the vendor, it aims to enable organizations of all sizes to effectively manage access control and authorization. DevOps teams, security teams, application developers, cloud-native infrastructure teams, and compliance teams in various industries are said to rely on Styra DAS for fine-grained access control and policy governance.

Key Features

Fine-grained Access Control: According to the vendor, Styra DAS allows for context-rich authorization through policy management. It is claimed to enable least-privilege access control for APIs, identities, systems, and services.

Policy Impact Analysis: The vendor states that developers can identify policy violations early in the development process with policy impact analysis in CI/CD pipelines. They can validate policies before committing and deploying.

Simplified Authoring & Collaboration: Styra DAS is said to ensure policy integrity and consistency across teams, clusters, and clouds. It provides a control plane with a GUI for various teams to engage in policy management, facilitating collaboration and ease of policy authoring.

Decision Logs and Compliance Monitoring: According to the vendor, Styra DAS monitors the health of Open Policy Agents (OPAs) and tracks connections, upgrades, and maintenance. It enables security teams to triage old policy decisions by replaying decision logs, supporting compliance monitoring and auditing.

Policy Lifecycle Management: Styra DAS is claimed to manage policy as code through the GitOps process. It facilitates policy deployment and updates in real-time across clusters and clouds, providing a centralized platform for policy lifecycle management.

Enterprise Governance: According to the vendor, Styra DAS offers a production-ready OPA with comprehensive policy management capabilities. It supports policy updates, distribution, monitoring, and more, aiming to enable governance of policy across the organization.

Unified Policy Management: Styra DAS is said to manage policy across a wide range of software systems, including Kubernetes, microservices, gateways, public cloud, Linux, custom applications, and databases. It provides a single language for expressing policy and offers a unified authorization platform designed specifically for OPA.

Policy as Code: According to the vendor, Styra DAS enables policy management through a high-level declarative language (Rego). It decouples policy decisions and enforcement, allowing policy-as-code management across systems. It provides APIs to remove policy decision-making from software.

Advanced Decision-Making: Styra DAS leverages Open Policy Agent (OPA) to deliver advanced decision-making capabilities, according to the vendor. OPA provides a general-purpose policy engine for unified policy enforcement and supports a high-level declarative language for defining policy as code.