secure.Identity

Identity & Access Management

Electronic identity is a collection of crucial information, from the information security point of view, which describes the employee of the organization. Such information shall be privileges to work with systems based on defined roles.

In a large-scale organization the information is vulnerable to distortion (redundancy, inconsistency) which makes management difficult and troublesome. It has a large influence on the implementation of the necessary knowledge principle that is important for security policy. Centralized supervision of the information collection combined with automating distribution processes refers to identity and access management systems.

Identity management systems are based mainly on three areas:

  • data centralizing and organizing,
  • information flow on rights in accordance with company processes,
  • tasks related to the verification of rights to systems, workstations and applications.

At management information layer the systems can be integrated with applications such as human resources by automating and standardizing the process of user management. At technological layer they open access to hardware solutions within the scope of users' identification using the multi-tokens or smart cards.

Functionality

  • centralized database of permissions on the basis of the roles in the organization, combined with visualization of the entitlements structure,
  • automatic distribution of information about permissions to systems and applications,
  • automation of permissions management processes within the scope of giving and withdrawing permissions for users, user groups, roles,
  • automatic removal of redundant and inconsistent information about permissions,
  • integration with existing permissions management systems,
  • possibility of centralized access policies management.

Benefits

  • standardized permissions management rules in the organization,
  • reduced execution time of the administrative procedures,
  • increased transparency of permissions management procedures,
  • monitoring of trials to abuse the permissions,
  • monitoring of systems and applications administrators activities,
  • increased capacities of existing permissions management systems and maximized benefits.

Technology

  • for the implementation of the solutions CA Identity Management tools are used  and are responsible for supervision of information about the roles and permissions combined with the workflow engine which is responsible for the correct information flow within permissions management processes,
  • within the scope of the inspection on permissions policies the products of CA eTrust Access Control family are used,
  • within the scope of authentication process automation to the station, the application CA Single Sign On products are used,
  • within the scope of Identity Management infrastructure for users authentication tokens or electronic cards can be used.
Go back

Information protection

Each organization has information to be protected as business secrets.
more Information protection

Business Continuity Plans

(BCP) is essential to guarantee the security of each organization.
more Business Continuity Plans

Search

spacer