Data Access Control as an Extension of IAM

Data Access Control is the final and logical step as an extension of the existing Identity & Access Management (IAM). The focus is exclusively on a central and fine-granular control of the data access.

The other IAM functions such as identity management, authentication and authorization on the systems, applications and functions are not affected. Existing and new solutions in this area, whether this concerns own or purchased solutions, are assumed to be complementary solutions and will be integrated.

The INVENTAGE approach improves the inherent security of the application itself. For this purpose, the solution centralizes the security-critical access mechanisms, which at present are generally implemented directly and widely distributed in the application code.

Data access control is consequently isolated from the application code and converted into an enclosed and fully configurable solution which is connected via standard interfaces.

The portion of the access control in the application itself (e.g. existing applications) and in the data access control tool can vary. The co-existence is perfectly possible, an overlapping of rules is unproblematic and there are no frictions. A planned and successive transfer is to be aimed at.

 
Right from the outset, access security with regard to data is an “integral part of the application DNA”. After all: something that is “inherently secure” does not need to be subsequently secured by means of additional costly measures and solutions.

The potential benefits as well as the potential savings are enormous – in every phase of the lifecycle of the applications.