GRANULARITY LEAST PRIVILEGE ACCESS MECHANISMS

Abstract

Approaches to managing permissions in a cloud-based computing environment are disclosed. Data corresponding to the usage of permissions is collected. The permissions are utilized to access resources in a cloud-based computing environment that provides secure resources and services based, at least in part, on permissions associated with a requesting entity. The collected data is analyzed utilizing one or more pre-selected parameters to determine usage levels for the permissions. An evaluation is performed to determine whether one or more usage levels for the permissions is outside of a usage window for the corresponding permissions. A report of permissions having usage levels outside of the usage window for the corresponding permissions is generated. The report is transmitted to an entity having some responsibility with respect to the usage of permissions.

CPC Classifications