In case you missed it, I’ve been pushing a sixth factor of authentication called “Somewhat You Why.”
“As I refined my thinking, I came to the conclusion that “why” is a reasonable factor of authentication, and that this was separate from the other authentication factors (such as “something you do”).”
And now Identity Jedi Harvey Lee is also asking the “why” question, but specifically in terms of access control.
“[B]ecause we couldn’t determine why someone needed access, we built systems that tried to guess the answer for us….
“Roles were never about “least privilege.” Roles were our attempt to predict intent at scale. And like most predictions, especially in complex systems, they were right until they weren’t….
“Instead of front-loading permissions for every possible future scenario, we authorize the current scenario. Identity might still be the new perimeter — but intent is the new access key.”
Read “Intent Is the New Access Key.”
For example, if a dehydrated man wants to unlock a water tank, I have a pretty good idea of his intent.
Bredemarket 
1 Comment