IAM Standard Processes

  • TYPE: Combined Session DATE: Thursday, May 07, 2015 TIME: 12:00-13:00 LOCATION: AMMERSEE I
Track

Sessions:

In this session, Matthias Reinwarth and Horst Walther will present the KuppingerCole standard IAM process models in two variants. One uses roles for implementing a consistent, comprehensive approach. However, there are various situations where deployment of complete role models is not feasible. For these situations, KuppingerCole has developed a lean model that works without roles, but allows organizations streamlining and standardizing their IAM processes anyway and meeting essential compliance requirements.


Speakers:

Dr. Horst Walther, born 1951 in Berlin, works as a interim manager, management consultant and independent technical advisor for more than 30 years. His expertise focuses on the business to technology interface. At KuppingerCole he covers the domain of IAM-processes, roles, rules & policies...


Over the past several years, there have been a lot of discussions around terms such as RBAC (Role Based Access Control), ABAC (Attribute Based Access Control), Dynamic Authorization Management (DAM) and standards such as XACML. Other terms such as RiskBAC (Risk Based Access Control) have been introduced more recently.

Quite frequently, there has been a debate between RBAC and ABAC, as to whether attributes should or must replace roles. However, most RBAC approaches in practice rely on more than purely role (i.e. on other attributes), while roles are a common attribute in ABAC. In practice, it is not RBAC vs. ABAC, but rather a sort of continuum.

However, the main issue in trying to position ABAC as the antipode to RBAC is that attributes vs. roles is not what the discussion should be about. The difference is in how access is granted.

This panel will be not be about RBAC vs. ABAC. It will be about RBAC & ABAC & more. What are the essential elements for moving towards an adaptive, policy-based access management (or APAM)? What do we need for a better access management that we can implement today and extend subsequently, moving from static to dynamic controls and from ACLs to policies? How to make this work with and without application integration? This panel is a must-attend panel for all people involved in defining and redefining their Access Management approaches.


Speakers:

Frank Boehm has been Managing Director at FSP since 2002. He started his professional career 1989 as a consultant for the financial services sector at Accenture and lead international projects  like SCOR USA, Gothaer, AXA, Kölnische Rück and Swiss Life.  

Thorsten has more than 20 years’ experience within the field of Directory Technologies, Identity Management and Data Privacy. As a technical trainer, consultant and developer he co-developed one of the first Identity Management Solutions which was fully driven by Entity-Relationship...

Patrick Parker is the founder and CEO of EmpowerID and has over 20 years’ experience in identity management. With a research background in evolutionary biology and genetics, Mr. Parker applied scientific methods and principles to develop a novel role and attribute-based access control and...



Moderators:

Quick Links

Stay Connected

Information

Congress

European Identity & Cloud Conference 2015

Language:
English
Registration fee:
€1980.00 $2475.00 S$3168.00 21780.00 kr
Mastercard Visa American Express PayPal INVOICE
Contact person:

Mr. Levent Kara
+49 211 23707710
lk@kuppingercole.com
  • May 05 - 08, 2015 Munich, Germany

Partners

The European Identity & Cloud Conference 2015 is proud to present a large number of partners
Learn more

How can we help you

Send an inquiry

Call Us +49 211 2370770

Mo – Fr 8:00 – 17:00