role mining

Role mining can be done in three ways, called bottom-up, top-down and by-example. In bottom-up role mining, users are given pre-existing roles based on their skills or duties. In top-down role mining, roles are formulated to match the skills or duties of individual users. In by-example role mining, roles are matched with user skills and duties as defined by managers.

Advantages of effective role mining include:

• Optimal assignment of roles to user privileges
• Identification of users who operate outside the normal pattern
• Detecting and eliminating redundant or superfluous roles or user privileges
• Keeping role definitions and user privileges up-to-date
• Eliminating potential security loopholes and minimizing consequent risks

Learn more about Enterprise User Provisioning Tools

	Identity and Access Management Services, Systems and Technologies: This Security School explores critical topics related to helping security practitioners establish and maintain an effective identity and access management plan.
Quiz: Compliance-driven role management: Use this five-question quiz to test your knowledge of role and entitlement management.
Lesson 3: How to implement secure access: In Lesson 3 of Wireless Security Lunchtime Learning, you'll learn the pros and cons of the various wireless access protocols so you can choose the best method to control your WLAN.
Quiz: The new school of enterprise authentication: Take this five-question quiz to test your knowledge of Mark Diodati's enterprise authentication lesson.
	Using IAM, password and provisioning management tools for compliance: In this new lesson, expert Tom Bowers will teach you how provisioning and password management can reduce help desk calls, ease compliance woes and save corporate cash.
Enhanced Identity and Access Management: Information Security Decisions Session Downloads: Enhanced Identity and Access Management

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

More resources from around the web: - Marco Casassa Mont discusses "The Role of Role Mining in Enterprises." - J. Vaidya, V. Atluri, and Q. Guo offer an in-depth technical description of role mining. - The National Institute of Science and Technology maintains a Web site devoted to RBAC.

FILE EXTENSION AND FILE FORMAT LIST File Extension and File Format List: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

RELATED CONTENT Quiz: Compliance-driven role management Use this five-question quiz to test your knowledge of role and entitlement management. Identity lifecycle management for security and compliance Learn how identity lifecycle management can go hand-in-hand with an effective security standards compliance program. Content-aware IAM: Uniting user access and data rights In the world of IT security, IAM and data protection have generally kept to their separate corners. That trend, however, may be shifting with the...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary AAA server  (SearchSecurity.com) authentication, authorization, and accounting  (SearchSecurity.com)