- Gmail secure paypal and ebay users
- Matt Cutt gave new wordpress security tips
- Safe mode helps you diagnose problems
- Encrypting through USB drive
- This security update resolves two privately reported vulnerabilities in Outlook Web Access
- Domain Name System (DNS) is responsible for translating host names to IP
- WEP is an encryption scheme based on the RC-4 cipher
- McAfee, Inc. Endpoint Encryption Deployed by NHS for Widespread Data Protection
|
|||||||||||||||||
 |
|||||||||||||||||
|
Approaches to access management
Friday, August 17, 2007, 10:10
Having summarized the many and sometimes conflicting requirements that an access management system must address, we now consider a number of actual schemes currently in use or under consideration and analyze how well they meet these requirements.
It’s important to recognize that in solving real-world problems more than one approach may be relevant at a single institution; one might use one scheme for one class of users and a different scheme for another class. For example, an institution might choose to manage access for kiosks and public workstations by IP source address, and to use a credential scheme for other users. Indeed, virtually all of the major institutional systems that are currently being deployed combine multiple approaches. Also, note that approaches can be cascaded in a hierarchy; for example, a resource might be set up to first check whether a user could be validated by an IP source filtering approach but if the IP source address isn’t valid for access, the resource might then apply a credential-based access management test.
Related posts
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.