Policy Engines (PDP)
Orchestrate policy deployment from a single control plane, keeping evaluation consistent across services and environments.
Supported engines: Amazon Verified Permissions (Cedar) and Open Policy Agent (Rego).
Give business, IT and security teams a shared language to govern access.
Fine-Grained, Policy Based Authorization
Model and share your Access Policy across teams
Big ACL helps you structure your authorization logic in a shared, consistent policy repository—ready for enforcement in any environment.
Big ACL is a Policy Administration Platform. It enables simple, centralized management of application permissions (e.g., "who can access what, and under what conditions").
Big ACL supports many access control models - RBAC, ABAC and ReBAC - and authorization languages such as CEDAR and REGO.
However, detailed knowledge of these concepts and languages is not required.
The platform takes care of all the hard work for you!
Big ACL supports leading policy languages and execution environments, enabling seamless integration with modern authorization stacks.
Policies written in natural language are translated into Rego for Open Policy Agent, CEDAR for AWS-native environments
Allowing teams to enforce consistent access logic across heterogeneous systems while maintaining compatibility with policy-as-code workflows and CI/CD pipelines.
Start regaining control over your authorizations.
Big ACL is a collaborative platform for managing access rules in a single source of truth. Product, engineering, and security teams work from the same playbook—no more scattered policies or conflicting interpretations.
It improves visibility, consistency, and cross-team alignment.
Traditionally, authorization and policy enforcement logic is embedded directly into the application codebase. Decoupling this logic from application code results in cleaner, more maintainable software.
Big ACL is a policy modeling layer that turns human-readable authorization rules into standard policy languages like Cedar and Rego.
As you define rules, Big ACL also generates an entity schema — a shared, versioned map of your users, roles, resources, and their relationships. This schema provides the structure that keeps access rules coherent and aligned across teams and systems.
Every rule is validated against the schema before translation, ensuring consistency, preventing drift, and catching errors early in your workflow.
Big ACL acts as modeling and orchestration layer. It translates human-readable authorization rules into standard policy languages like Cedar Policy et Rego and deploys them to Policy Decision Points where decisions are enforced.
Orchestrate policy deployment from a single control plane, keeping evaluation consistent across services and environments.
Supported engines: Amazon Verified Permissions (Cedar) and Open Policy Agent (Rego).
Assign tasks related to the rule lifecycle directly in your ticketing tool.
Requests, approvals, reviews, and deprovisioning are auditable end-to-end.
Supported tool: Jira.
Policies keep live links back to their sources for audit and impact analysis.
Supported tools:
LeanIX (Fact Sheets).
BPMN tools (business processes).
With Big ACL, every authorization rule comes with automatically generated test cases. Each rule is exercised across valid and invalid scenarios, ensuring its behavior is precise, predictable, and aligned with your intent.
This built-in testing makes policies safer to evolve. As your schema or rules change, Big ACL regenerates test cases to catch regressions before they reach production—giving your team confidence in every deploy.