Identity management and access control
Identity and access control management comprise identification and authentication of users in order to determine the appropriate level of authorization.
The ever-increasing number of identities is challenging to handle for users and represent a significant cost in terms of administration. Additionally, service integration and interaction is made difficult due to the fact that users may have different identities in the different systems. Federated Identity Management aims to let users utilize a single identity to access a variety of systems. Hence, system owners may reduce administration costs significantly.
With the use of distributed systems and the extensive exchange of information across systems, access control decisions and enforcement are becoming more challenging. Usage control attempts to handle all aspects of controlling access to and usage of information and resources, also external to the originating system.
SINTEF conducts research on how to create better and more efficient solutions for a holistic identity and access control management.