In this issue of the IEEE Security & Privacy Journal, I have an article on Introduction to Identity Management Risk Metrics it is in the "Build Security In" column that I co-edit with John Steven. The article looks at ways to use metrics to measure and monitor identity's distribution, quality, affiliation, and governance in the enterprise. There are specific tips for identity and security architects on how to locate and use metrics in their identity management processes and systems.
Comments