Adaptive and attribute based access control

Access control used to be simple: users are grouped in some way – whether hierarchical in groups or functional in roles – and subsequently entitlements are mapped on such groupings, determining the access rights of the user involved, often in a static way.

In the perimeter-less world of today this model is no longer sufficient to cope with the requirements of new cloud-based environments and a multitude of user devices, including BYOD mobile platforms. Context became an important factor in determining a user’s access rights, often different on a session basis depending on time, place, persona and platform characteristics.

Gartner: “Adaptive Access Control is an emerging concept that builds on the concepts of risk-appropriate authentication and fine-grained, context-aware authorization to provide an extremely flexible approach to access control”.

TrustBuilder’s flexible and workflow-based architecture allows accommodating such attribute based access control taking context into account, resulting in actions like step-up authentication, a layered security model involving additional verifications and the ability to invoke steps to strengthen the protection of critical data in a transaction.

Dynamically protect your business assets taking context into account

Business benefits

  • Dynamically protect your business assets taking context into account
  • Easily accommodate new Cloud and Mobile requirements
  • Rapid deployment, no custom coding
  • Change the behavior over time without impacting the applications environment
  • Centralized approach reducing costs and increasing control.

Do you want to know more about attribute and adaptive based access control? Don't hesitate to contact us.