650-15 Population
Definition for UCSF Identity Management System
Effective
Date:
Office of Origin: Information Technology Services
(ITS)
I. Purpose
This policy
establishes definition of the populations included in the UCSF identity
infrastructure to build and realize the benefits of integrated application and
directory services. In addition, it provides comprehensive identity management
policies, practices and systems to participate in inter-institutional
federations of trust within the UC system and with entities outside the system
(e.g., grant-funding agencies and publishers).
II. Definitions
Authentication: The ability to validate that a person (or other entity) can satisfactorily
demonstrate that he or she is known to the campus.
Authorization: The management of access privileges for an
individual based upon:
·
the
individual’s identity
·
attributes
of the individual with respect to UCSF
·
the
official role of the individual at UCSF
·
the resource(s)
to which the individual seeks access
·
the
rules that pertain to that resource
Identity Management: The storage and maintenance of identity
qualifying information regarding a defined population for a specific set of
business reasons.
III. Policy
UCSF will record
and manage identity information regarding an individual for either or both of
the following reasons:
IV. Responsibility
Contact Office of
Origin (see above) with any questions.
V. Related Policies
None
VI. References
·
IT Governance
Architecture/Infrastructure Committee Website
·
Information Technology
Services Procedures
·
Request for
Comments on Population Definition for UCSF Identification Management System
Policy