Haber and Rolls, 2020
Identity Attack Vectors: Implementing an Effective Identity and Access Management Solution
Type
Book
Year
2020
Authors
Haber, M.J., Rolls, D.
Identifiers
ISBN: 978-1-4842-5164-5
ISBN: 978-1-4842-5165-2
Abstract
Discover how poor identity and privilege management can be leveraged to compromise accounts and credentials within an organization. Learn how role-based identity assignments, entitlements, and auditing strategies can be implemented to mitigate the threats leveraging accounts and identities and how to manage compliance for regulatory initiatives.
As a solution, Identity Access Management (IAM) has emerged as the cornerstone of enterprise security. Managing accounts, credentials, roles, certification, and attestation reporting for all resources is now a security and compliance mandate. When identity theft and poor identity management is leveraged as an attack vector, risk and vulnerabilities increase exponentially. As cyber attacks continue to increase in volume and sophistication, it is not a matter of if, but when, your organization will have an incident. Threat actors target accounts, users, and their associated identities, to conduct their malicious activities through privileged attacks and asset vulnerabilities.
Identity Attack Vectors details the risks associated with poor identity management practices, the techniques that threat actors and insiders leverage, and the operational best practices that organizations should adopt to protect against identity theft and account compromises, and to develop an effective identity governance program.
(https://link.springer.com/book/10.1007%2F978-1-4842-5165-2#about, accessed 8 Jan 2021)
Links
Citation
Haber, M.J., Rolls, D., 2020. Identity Attack Vectors: Implementing an Effective Identity and Access Management Solution. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-5165-2
Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.
This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.