|
|
|
|
|
|
by mannyv
1304 days ago
|
|
|
Well, it's really tough, because (1) every operation has to check if the calling entity is authorized, (2) changes need to propagate super quickly, and (3) performance needs to be pretty much realtime. At some level every API call is authorized (and tracked). To be honest, this is one of the secret sauces that makes AWS go. Someone once told me that they're not doing anything exciting, just caching, but I'm pretty sure they didn't really know what was going on. |
|
|