Access control used to be simple: users are grouped in some way – whether hierarchical in groups or functional in roles – and subsequently entitlements are mapped on such groupings, determining the access rights of the user involved, often in a static way.
In the perimeter-less world of today this model is no longer sufficient to cope with the requirements of new cloud-based environments and a multitude of user devices, including BYOD mobile platforms. Context became an important factor in determining a user’s access rights, often different on a session basis depending on time, place, persona and platform characteristics.
Gartner: “Adaptive Access Control is an emerging concept that builds on the concepts of risk-appropriate authentication and fine-grained, context-aware authorization to provide an extremely flexible approach to access control”.
TrustBuilder’s flexible and workflow-based architecture allows accommodating such attribute based access control taking context into account, resulting in actions like step-up authentication, a layered security model involving additional verifications and the ability to invoke steps to strengthen the protection of critical data in a transaction.
Dynamically protect your business assets taking context into account
- Dynamically protect your business assets taking context into account
- Easily accommodate new Cloud and Mobile requirements
- Rapid deployment, no custom coding
- Change the behavior over time without impacting the applications environment
- Centralized approach reducing costs and increasing control.
Do you want to know more about attribute and adaptive based access control? Don't hesitate to contact us.