The concept of Just-in-Time (JIT) Access Management is a strategy that aligns real-time requests for usage of accounts directly with entitlements without the static assignment of an account or privilege to an Identity. Companies use this strategy to secure accounts from continuous real-time access by restricting them based on appropriate behavior, context, and other ephemeral properties. This decreases the risk of an always-on account that can be leveraged by a threat actor outside of acceptable use policies and procedures. This method requires organizations to establish criteria for just-in-time access and accept that these accounts are not available outside of potentially break glass scenarios.
CITATION STYLE
Haber, M. J., & Rolls, D. (2020). Just-in-Time Access Management. In Identity Attack Vectors (pp. 151–155). Apress. https://doi.org/10.1007/978-1-4842-5165-2_14
Mendeley helps you to discover research relevant for your work.