U.S. federal government agencies hold information that, if released from control, could do grave harm to the country and its citizens. This information includes Personally Identifiable Information on federal employees and U.S. citizens, proprietary or export controlled data, or other sensitive material related to national security. Federal agencies invest heavily in protecting data from hacking and other external threats, but the insider threat problem requires a new approach to access control.