Multiple levels of hardware and software technologies, including support of these technologies by people, are required for trustworthy access to online information.
Security data used for audit is being generated continuously from multiple disparate sources or levels between the user and business data accessed. Complexity is compounded by lack of standards for storing and organizing security data needed for governance, risk and compliance.
A user accessing online information passes through at least five levels, with each level playing its part to provide secure access to information:
- Network
- PCs and servers
- Active Directory authentication and authorization
- Multiple identity systems
- Applications with embedded security
