Scopes | At the level of an organization entity, program or project, the process scope may be defined using the scope dimensions listed below. But at the organization level, the scope must be embraced holistically to effectively manage revocation risks and consider all of these scope dimensions . User populations: permanent employees, contractors, partners, customers, consumers, authorities Identity categories: humans, robots, processes Principal categories: user accounts, technical accounts, service accounts Credential categories: passwords, certificates Access type: logical, physical (/wiki/spaces/QUOT/pages/67568001)Security session mechanisms or not (account lockout policies) IT Systems (business applications, infrastructure, …) Organizational scope (region, division, unit, …)
|
|---|