Requirements within IAM, however, are rapidly changing. Restricting access to data is no longer adequate, secure sharing of information, both within and across borders, is now essential for any business or governmental organization to operate effectively. Moreover, many business processes demand a more dynamic and fine-grained approach to IAM than has been previously available.

Based on this many organizations are striving to develop new strategies in their IAM vision and roadmap planning. And. while investments made need to be leveraged, organizations look for IAM capabilities that will make them more agile and responsive to change requests.

This paper discusses these changing requirements and suggests that the necessary IAM evolution can be achieved with two important new concepts that combined amount to what could be considered a small IAM revolution: the combination of Federated Identity Management and Attribute Based Access Control (ABAC).

The findings show that mature methodologies, standards and technologies are available with which IAM investments made in the past can be leveraged while new demands for simplified administration and information sharing and related fine-grained access controls can be met. These new IAM concepts even bear the promise of considerably reduced operational costs, since a number of tasks today handled in separate IAM governance processes can be embedded and delegated to existing business processes.

Some resources on this web site are available for registered users only. To access them, you need to login. If you do not have an account yet, use the registration form.