Approaches to access management

Having summarized the many and sometimes conflicting requirements that an access management system must address, we now consider a number of actual schemes currently in use or under consideration and analyze how well they meet these requirements.

It’s important to recognize that in solving real-world problems more than one approach may be relevant at a single institution; one might use one scheme for one class of users and a different scheme for another class. For example, an institution might choose to manage access for kiosks and public workstations by IP source address, and to use a credential scheme for other users. Indeed, virtually all of the major institutional systems that are currently being deployed combine multiple approaches. Also, note that approaches can be cascaded in a hierarchy; for example, a resource might be set up to first check whether a user could be validated by an IP source filtering approach but if the IP source address isn’t valid for access, the resource might then apply a credential-based access management test.

Related posts:

1. The basic cross-organizational access management problem
2. IP source address filtering
3. Strength of authentication
4. Web acces management system
5. Three architectural pillars underscore Sun’s infinite access security model:
6. Juniper Networks Secure Access leads the SSL VPN market

Related posts brought to you by Yet Another Related Posts Plugin.