ABAC provides contextually-aware and granular access to data and reduced time-to-market for new applications.
Reduce time to market for new applications.
In this era of digital transformation, mechanisms like API Management and Federation & Attribute Based Access Control (ABAC), are leading the way when it comes to utilising or monetising information assets. Digital organisations are applying these technologies in agile, high velocity development environments to provide rapid, secure access to legacy and distributed data ecosystems. Increased speed to market is achieved without having to replace or reengineer legacy systems.
ABAC is the ‘next generation’ model for authorising access requests. It moves beyond role-based models to provide dynamic, context-aware and risk-based access control. We expect it to soon become the standard for organisations that need a robust and flexible solution to secure and share information assets. Unlike earlier Role Based Access Control (RBAC) models, which determine who has access to what, ABAC can specify when, why and how they are granted access.
This approach offers many benefits compared with static access control models. Multi-dimensional and dynamic ABAC systems use attributes and policies to prevent ‘role explosion’, increase scalability, enable relationships, eliminate Segregation of Duty conflicts, and externalise authorisation for ease of management and control. They also help organisations to comply with ever-increasing regulatory demands.
In addition to ABAC, KPMG can provide services for: