-
-
Applications page
-
HR Application(SOT)
-
Target System/downstream application
-
Request Center
-
Risk Management
-
Auth0 Application configuration
-
Auth0 Role configuration
-
Auth0 Users
Inspiration
Risks associated with the Malicious insiders
What it does
It connects with the downstream applications using OpenID Connect (OIDC), handles automatic provisioning, on-demand provisioning and utilizes AI to identifies the unusual patterns in the user access. for example a contractor with an Admin access is a unusual patterns.
How we built it
We built it using Next.js, Auth0 and Flask
Challenges we ran into
- Understanding how the IGA systems works.
- Planning and designing the flow
- Building and training the AI model to generate accurate results
Accomplishments that we're proud of
The idea of building an AI based risk management system to overcome the limitations of "Access Certification".
explantion: The "Access Certification" has to conducted periodically, usually the organizations conduct "Access Certification" once in 30 days and the certification duration may last for 2 weeks. which means to identify a malicious users with privileged access may take atleast 10 days and if the certifier is an ignorant or if he/she is a malicious insider then they might exploit the access certification process to gain unauthorized access or tamper with access rights.
What we learned
The Importance of AI in IGA systems to identify the potential risks
What's next for Identity, Access and Risk Management
- Improving the AI model
- Colabrating with the IGA providers to integrate the AI based Risk Management System as a feature.
Built With
- autho
- flask
- javascript
- next
- python
- typescript
Log in or sign up for Devpost to join the conversation.