Identity & Access Management
Description
Identity & Access Management represents the capability responsible for managing digital identities and authentication across the Scheol Lab environment.
It ensures that users and services are properly authenticated and that access privileges are assigned according to security policies.
Asset Identification
| Attribute | Value |
|---|---|
| Asset ID | BUS-IDM-01 |
| CI Type | Business |
| Asset Name | Identity & Access Management |
| Asset Category | Security Governance Capability |
| Owner | Security Role (Sec) |
| Status | Planned |
| Location | Internal infrastructure |
| Primary Function | Centralized authentication and identity lifecycle management |
Asset Dependencies
| Dependency Type | Asset | Status |
|---|---|---|
| Platform | Identity Management Platform | Planned |
| Infrastructure | Proxmox Host | Active |
Relationships
| Relationship | Target CI |
|---|---|
| Uses | Identity Management Platform |
| Supports capability | Secure Remote Access |
Asset Classification
| Criteria | Level |
|---|---|
| Confidentiality | 🟥 High |
| Integrity | 🟥 High |
| Availability | 🟨 Medium |
Criticality score: 🟥 High
Responsibilities
| Role | Responsibility |
|---|---|
| Security Role (Sec) | Identity governance and access policies |
| Operations Role (Ops) | Platform deployment and maintenance |
Security Controls (High-Level)
- Identity lifecycle management
- Role-based access control
- Secure authentication mechanisms
- Access monitoring
Security Considerations
Compromise of identity systems may allow unauthorized access to multiple infrastructure components.
Controls therefore emphasize authentication strength and access monitoring.
Methodological References:
- ISO 27001 - Control 8.2 Privileged access rights.
- NIST CSF - PR.AC Identity Management, Authentication and Access Control.
- EBIOS RM - Identity assets.