Open andrii-itdev opened 7 months ago
Processes-related
Monitoring
Processes
Monitoring
Identity-related:
Data Sets
Records
Data Sets
Records
Common Workflows For the following domains:
A user creates a new DataSet (e.g., FontTheorySet). The user adds a record (e.g. "Aesthetics of Letters"). The user adds a record (e.g. "BeyondTheSerif"). The user creates a new DataSet (e.g., "AdvancedDesignPrinciplesSet"). The user establishes a relationship between related DataSets (e.g., FontTheorySet and AdvancedDesignPrinciplesSet). The user shares the FontTheorySet with another user. Another user who has access updates "Aesthetics of Letters" record. "Owner" user receives a notification. Another user who has access updates "BeyondTheSerif" record. "Owner" user receives a notification.
Identity Management (IDM), a.k.a. Identity and Access Management (IAM)
Authentication Multi-Factor Authentication (MFA): Supporting multiple authentication factors (passwords, tokens, biometrics) to enhance security. Single Sign-On (SSO): Allowing users to log in once and access multiple applications without re-authenticating.
Authorization (Identity Federation) Role-Based Access Control (RBAC): Assigning permissions based on predefined roles and responsibilities. Attribute-Based Access Control (ABAC): Granting access based on specific attributes of the user, environment, or resource. Supporting industry standards for integration, such as Security Assertion Markup Language (SAML) or OAuth. Identity Federation. Trust is established between the IdP and SP, allowing the SP to rely on the authentication and assertions provided by the IdP (Research is planned) #14
User Lifecycle Management User Provisioning: Automated creation, and modification of user accounts across systems and applications. User Deprovisioning: Ensuring proper removal or deactivation of user accounts when no longer needed.
Password Management: Enforcing password policies (length, complexity, expiration) to enhance security. Password reset and recovery mechanisms to assist users in case of forgotten passwords.
Directory Services: Integration with directories such as Lightweight Directory Access Protocol (LDAP) or Microsoft Active Directory.
User Profile/Configuration Management Providing users with self-service capabilities for tasks such as password resets, profile updates, and access requests.
Policy Enforcement Enforcing security policies related to user authentication, access control, and data protection. Adhering to organizational policies and industry best practices.
Data Ingestion features
Low-priority:
Types
Data Storage, Management, and Transformation (Core Domain)
Data Storage
Data Versioning: Support for versioning to track changes over time. Ability to roll back to previous versions and audit trail for data modifications.
Scalability: Ability to handle large volumes of master data efficiently.
Data Management
Real-time Processing Support real-time data manipulation, such as manual changes and modifications to Data Sets. Records purging (deletion) from data sets.
Data Mapping and Integration: Mapping capabilities to define relationships between different data records ("datums").
Data Standardization: Standardization of data formats, units, and values. Correct (Automatic) conversion of the data according to the data types.
Data Tranformation
Data Monitoring and Alerting
Data Enrichment
Data Cataloging and Discovery
Data Collaboration and Sharing
Data Analysis Consist of the following subdomains:
Data Integration
Data Governance
**Data Visualization and Reporting:
Data Migration
Data Archiving and Purging
Data Security and Privacy
Machine Learning and Predictive Analytics
Tasks