Leveraging Dynamic Information for Identity and Access Management: An Extension of Current Enterprise IAM Architecture

Alexander Puchta, Sebastian Groll, Günther Pernul

Abstract

Identity and access management (IAM) functions as a core component for today’s enterprises managing digital identities and their access to resources. However, IAM systems are quite isolated from other applications with useful information resulting in individual data pots. By interconnecting these systems, important information on relevant IAM entities like criticality or usage information can be additionally gathered for further improvement. Current IAM landscapes within enterprises are not prepared for such challenges as the data needs to be harmonised, analysed, and verified. Within this work a state-of-the-art IAM architecture in enterprises and existing shortcomings are defined. Based on these, an extended IAM architecture scheme is proposed and described in detail. Key component is the integration of additional information sources for mutual benefit in IAM and external applications. Finally, the approach is applied to two use cases based on real data. They originate from our conducted IAM projects and show the feasibility of the proposed architecture.

Download


Paper Citation


in Harvard Style

Puchta A., Groll S. and Pernul G. (2021). Leveraging Dynamic Information for Identity and Access Management: An Extension of Current Enterprise IAM Architecture.In Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-491-6, pages 611-618. DOI: 10.5220/0010315706110618


in Bibtex Style

@conference{icissp21,
author={Alexander Puchta and Sebastian Groll and Günther Pernul},
title={Leveraging Dynamic Information for Identity and Access Management: An Extension of Current Enterprise IAM Architecture},
booktitle={Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2021},
pages={611-618},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010315706110618},
isbn={978-989-758-491-6},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Leveraging Dynamic Information for Identity and Access Management: An Extension of Current Enterprise IAM Architecture
SN - 978-989-758-491-6
AU - Puchta A.
AU - Groll S.
AU - Pernul G.
PY - 2021
SP - 611
EP - 618
DO - 10.5220/0010315706110618