An Identity Management System should provide for Accountability for user actions. This typically amounts to Authentication of users before they perform actions such as submitting change requests, authorizing changes, or managing passwords. Accountability also means that such actions should be logged, and it should be difficult or impossible to alter those logs.

(See Non-Repudiation).

Return to IT Security Concepts