What is IDAC?
IDAC is the system that will be replacing KIMKAT for managing identities and credentials. IDAC will be implemented at Karolinska Institutet in 2018.
IDAC will be replacing KI’s current identity and credential management system, KIMKAT. IDAC stands for Identity Access Control.
NIBS (the New Identity and Authorisation System) is the project organisation behind IDAC and will be wound down as the organisation for maintaining and administrating the system takes over IDAC.
What do you mean by "identity" and "credentials"?
Identity: The identity is an electronical counterpart for you as a person. It is connected to a physical verification that you are you, e.g. your Social Security Number or the number of your passport. This electronic identity goes by the name of KI ID.
Credentials: Your credentials work as a key in order to access information in KI's different software. Which information you're able to access with your "key" is based on your role or which organisation you belong to.
Why do we need a new system?
The aim of the project is to replace the current Identity Access Management (IAM) solution KIMKAT with IDAC in order to
- Increase security at KI.
- Become compliant with the requirements of the EU’s General Data Protection Regulation (GDPR). Read more about GDPR at KI.
- Centralise identity and credential management at KI and make it more efficient and secure.
- Create a solution that is adaptable to KI’s organisation and its interdepartmental collaborations.
- Ensure accurate, up-to-date, quality-assured and accessible information on KI and its staff by providing a simplified metadata catalogue/catalogue service.
- Reduce the manual administrative burden.
How is the new system developed?
Developing an identity access management system is much more an operational project than a technical one. There is a strong focus on processes and procedures, such as those required to ensure a standardized process for “onboarding” (the process for new employees) and “offboarding” (the process for departing employees) and that all types of user category (staff, students, affiliates, consultants, etc.) are managed in a uniform manner throughout KI. In NIBS, the technical solution accounts for 20% to 30% of the project delivery; the rest of the work concerns processes and procedures.
Who is to have access to what information and when?
The project has been underway since January 2016. Right now we are further developing and testing the system. The launch and system exchange is planned for May/June 2018.
|Jan - Nov 2017||Identifying processes|
|Feb - Apr 2017||Installation and basic configuration of technical platform|
|Feb 2017 - May 2018||New system support for affiliates|
|May - Jun 2017||Configuration of KI-adaption of technical platform|
|May 2017 - Feb 2018||Establishment of system maintenance and administration|
|July 2017 - May 2018||Test, development and securing of the solution|
|June - Aug 2018||Shut down of KIMKAT|
|June - August 2018||Conclusion of the project and final report|