Federal Labs Technology Demonstrations and Discussions

Tuesday, March 29, 2016

NCCoE Security Engineer Bill Fisher will present "ABAC: Run-time Access Control for Federated Identities" during the NIST session from 8:30am-12:00pm at the Federal Labs Technology Demonstrations and Discussions in College Park, Md.

Enterprises rely upon strong access control mechanisms to ensure that corporate resources (e.g. applications, networks, systems, and data) are not exposed to anyone other than an authorized user. As business requirements change, enterprises need highly flexible access control mechanisms that can adapt. The application of attribute based policy definitions enables enterprises to accommodate a diverse set of business cases, to include identities federated from external security domains. The NCCoE has published NIST SP 1800-3 Practice Guide, detailing an approach that the NCCoE took in developing an ABAC reference architecture and build. This demonstration will showcase commercially available technology used by the NCCoE to federate identity and attribute information and to make access decisions utilizing attribute based policy definitions.