What is IDAC?

Denna sida på svenska

IDAC is the system that will be replacing KIMKAT for managing identities and credentials. IDAC will be implemented at Karolinska Institutet in early 2018.

IDAC will be replacing KI’s current identity and credential management system, KIMKAT. IDAC stands for Identity Access Control.

NIBS (the New Identity and Authorisation System) is the project organisation behind IDAC and will be wound down as the organisation for maintaining and administrating the system takes over IDAC.

What do you mean by "identity" and "credentials"?

Identity: The identity is an electronical counterpart for you as a person. It is connected to a physical verification that you are you, e.g. your Social Security Number or the number of your passport. This electronic identity goes by the name of KI ID.

Credentials: Your credentials work as a key in order to access information in KI's different software. Which information you're able to access with your "key" is based on your role or which organisation you belong to.

Why do we need a new system?

The aim of the project is to replace the current Identity Access Management (IAM) solution KIMKAT with IDAC in order to

  • Increase security at KI
  • Become compliant with the requirements of the EU’s General Data Protection Regulation (GDPR)
  • Centralise identity and credential management at KI and make it more efficient and secure
  • Create a solution that is adaptable to KI’s organisation and its interdepartmental collaborations
  • Ensure accurate, up-to-date, quality-assured and accessible information on KI and its staff by providing a simplified metadata catalogue/catalogue service
  • Reduce the manual administrative burden.

How is the new system developed?

The largest part of the IDAC project is to generate common processes and routines.

Developing an identity access management system is much more an operational project than a technical one. There is a strong focus on processes and procedures, such as those required to ensure a standardized process for “onboarding” (the process for new employees) and “offboarding” (the process for departing employees) and that all types of user category (staff, students, affiliates, consultants, etc.) are managed in a uniform manner throughout KI. In NIBS, the technical solution accounts for 20% to 30% of the project delivery; the rest of the work concerns processes and procedures.

Who is to have access to what information and when?

Schedule

The project has been underway since January 2016. The first version of the technical platform will be developed by 30 June. Next step is to develop the processes in the system. Then a longer test and development period will ensue, with launch and system exchange planned for Feburary/March 2018.

Jan - Nov 2017 Identifying processes
Feb - Apr 2017 Installation and basic configuration of technical platform
Feb - Oct 2017 New system support for affiliates
May - Jun 2017 Configuration of KI-adaption of technical platform
May - Nov 2017 Establishment of system maintenance and administration
July 2017 - Jan 2018 Test, development and securing of the solution
Feb 2018 Launch
Feb/March 2018 Shut down of KIMKAT
Feb - Apr 2018 Conclusion of the project and final report

Contact

Project Manager NIBS

Pernilla Hulth

Cell phone: 076-139 08 40
Organizational unit: Information Technology Office
E-mail: pernilla.hulth@ki.se