Definition: Access Management ABB is an Application Service aimed to grant authorized users the right to use a service, while preventing access to non-authorized users
Source: ITIL v3
Source reference: https://wiki.en.it-processmaps.com/index.php/Access_Management
Last modification: 2024-01-28
Identifier: http://data.europa.eu/dr8/AccessManagementApplicationService
LOST view: Technical view - application
EIRA concept: eira:ArchitectureBuildingBlock
ABB name: eira:AccessManagementApplicationService
Example: The following implementation is an example on how this specific Architecture Building Block (ABB) can be instantiated as a Solution Building Block (SBB): Belgian Federal Public Service Policy and Support - Role Management service: The Role Management service gives access managers the possibility to manage roles. A role gives access to an online government application. Characteristics: • A federal access management platform for public e-gov applications; • Three separate contexts: Businesses, Officials and Independent; • Roles that can only be attributed by a specific group of managers for a specific application within one of the three contexts; • Two different security levels of the application depending on the sensitivity of the information: user name, password and token; and electronic identity card with associated PIN code; • Authentication when connecting to an application; • Support with the implementation of the service; • Support while the service is being used. Users: All public services and institutions that want a secure access management for their applications: federal public services and institutions; Communities and Regions; Provinces, municipalities and local public social welfare centres; businesses or persons implementing government contracts. Requirements: application with Fedict Service Desk and signing up to a user agreement.(http://www.fedict.belgium.be/en/identificatie_beveiliging/rollenbeheer)
Interoperability Saliency: The Access Management Service ABB is salient for technical interoperability because it provides the functionality of allowing user to make an authorized and trusted use of IT Services, data and other assets as stated in the EIF: "Public administrations should ensure that a 'data access and authorisation plan’ which determines who has access to what data and under what conditions, to ensure privacy. Unauthorised access and security breaches should be monitored and appropriate actions should be taken to prevent any recurrence of breaches"
Additional information: Access management helps to protect the confidentiality, integrity and availability of assets by ensuring that only authorized users are able to access or modify the assets.
Interoperability Dimension: Structural IoP
Viewpoint: Interoperability Security viewpoint
Additional identifier: http://data.europa.eu/dr8/AccessManagementApplicationService
EIF Layer: TechnicalApplication
|
|
| eira:PURI | http://data.europa.eu/dr8/AccessManagementApplicationService |
| dct:type | eira:AccessManagementApplicationService |
| dct:modified | 2024-01-28 |
| eira:synonym | |
| skos:definition | Access Management ABB is an Application Service aimed to grant authorized users the right to use a service, while preventing access to non-authorized users |
| eira:definitionSource | ITIL v3 |
| eira:definitionSourceReference | https://wiki.en.it-processmaps.com/index.php/Access_Management |
| skos:example | The following implementation is an example on how this specific Architecture Building Block (ABB) can be instantiated as a Solution Building Block (SBB): Belgian Federal Public Service Policy and Support - Role Management service: The Role Management service gives access managers the possibility to manage roles. A role gives access to an online government application. Characteristics: • A federal access management platform for public e-gov applications; • Three separate contexts: Businesses, Officials and Independent; • Roles that can only be attributed by a specific group of managers for a specific application within one of the three contexts; • Two different security levels of the application depending on the sensitivity of the information: user name, password and token; and electronic identity card with associated PIN code; • Authentication when connecting to an application; • Support with the implementation of the service; • Support while the service is being used. Users: All public services and institutions that want a secure access management for their applications: federal public services and institutions; Communities and Regions; Provinces, municipalities and local public social welfare centres; businesses or persons implementing government contracts. Requirements: application with Fedict Service Desk and signing up to a user agreement.(http://www.fedict.belgium.be/en/identificatie_beveiliging/rollenbeheer) |
| eira:iopSaliency | The Access Management Service ABB is salient for technical interoperability because it provides the functionality of allowing user to make an authorized and trusted use of IT Services, data and other assets as stated in the EIF: "Public administrations should ensure that a 'data access and authorisation plan’ which determines who has access to what data and under what conditions, to ensure privacy. Unauthorised access and security breaches should be monitored and appropriate actions should be taken to prevent any recurrence of breaches" |
| skos:note | Access management helps to protect the confidentiality, integrity and availability of assets by ensuring that only authorized users are able to access or modify the assets. |
| eira:concept | eira:ArchitectureBuildingBlock |
| eira:iopDimension | Structural IoP |
| eira:view | Technical view - application |
| eira:viewpoint | Interoperability Security viewpoint |
| dct:identifier | http://data.europa.eu/dr8/AccessManagementApplicationService |
| eira:eifLayer | TechnicalApplication |