Summary

Recommendation ITU-T X.1257 develops a specification to ensure that the necessary business meaning is assigned to identity and access management (IAM) roles and permissions, and that this business meaning is traceable and referenceable throughout the IAM process lifecycle. This means that that permissions can be efficiently assigned to users, separation of duties (SoD) controls can be successfully implemented across applications, and access review and reconciliation processes can be carried out efficiently.