Sunday, March 6, 2011

Discovering Identity - Who Used those Access Rights, How?

Mark Dixon at "Discovering Identity" raises a new question for identity auditing - "Who used those access rights and how did they use them?"

Mark contrasts this with the standard questions of "Who has access to what?" and "Who granted those access rights, when?". He also points out that while IAM suite vendors have tools to address the last two questions, they currently lack a good solution for the first.
"The [last] two questions address the assignment of access rights to individuals; the [first] question addresses actual use of access rights after assignment." - Mark Dixon, Discovering Identity
For more see Mark's blog Who Used those Access Rights, How?

No comments:

Popular Posts

Copyright © 2010-2017 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.