摘要 |
A system which provides additional controls in access management for single sign on deployments, in order to restrict the range of resources in the deployment which could be accessed by an attacker, without unnecessarily burdening the user for their typical and legitimate use of these resources via single sign on. A misuse protection agent ( 12 ) intercepts access requests before they reach the target resource, and will check the status of the user for this resource in the database ( 28 ).
|