Making Digital Services Secure and Trustworthy
Risk ManagementManaging Identity Risk, Transaction Risk and Compensating Controls |
Identity Risk. Design-time.
Managing the implementation of checks and controls required to ensure a particular level of assurance associated with a credential
Transaction Risk. Run-time.
Managing the implementation of checks and controls within the authentication process itself to ensure that a transaction can be trusted
Compensating Controls. The final defense.
Managing the implementation of checks and controls to mitigate the uncovered risk resulting from the mismatch between the assurance level provided by the credential and the assurance level required by the relying party
More Risk Management Advice
Protecting Personal Data with Multi-Factor Authentication and Identity Proofing
Single factor credentials are no longer sufficient to protect personal data
[Continue reading ...]
What Is the Role of Transaction Risk in Identity Assurance?
How to incorporate transaction risk into identity assurance models
[Continue reading ...]
Near Real-Time Anomaly Detection and Remediation
Components of an anomaly detection and remediation compensating control
[Continue reading ...]
|
Did you find this interesting? Don't miss any new posts. Sign up to automatically receive them now! |
I am a Public Interest Technologist. I help organizations and leaders gain clarity and understanding on complex architecture, information security & privacy practices and market dynamics, so they can enable secure, trustworthy digital services. 
