Using attribute-based access control for tag-based access authorization with Amazon DynamoDB
Database Blog
This article introduces attribute-based access control (ABAC) for Amazon DynamoDB, a new feature in limited preview. ABAC allows defining permissions based on attributes (tags) attached to IAM entities and DynamoDB resources.
Specifically, the article covers:
- Benefits of using ABAC with DynamoDB, such as fewer policies, automatic permission management, alignment with corporate directory, and improved auditing
- Example use cases of restricting actions based on tag conditions
- Auditing policies before enabling ABAC to avoid authorization changes
- How to sign up for the limited preview of ABAC for DynamoDB
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Sep 3
2024
2024
Amazon DynamoDB announces support for Attribute-Based Access Control
Nov 18
2024
2024
Amazon DynamoDB announces general availability of attribute-based access control
Aug 1
2025
2025
Amazon S3 Access Points now support tags for Attribute-Based Access Control
Nov 21
2025
2025
Introducing attribute-based access control for Amazon S3 general purpose buckets
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.