Definition Edit

Identity-based access control (IBAC) is

access control based on the identity of the user (typically relayed as a characteristic of the process acting on behalf of that user) where access authorizations to specific objects are assigned based on user identity.[1]

References Edit

  1. Cybersecurity A Primer for State Utility Regulators, App. B.