Definition
Web access management (WAM) is the process and technology for controlling and securing access to web resources. It involves authenticating users, authorizing their access based on predefined policies, and ensuring secure communication between users and web services.
For example, in addition to a simple password and username combination, it can support biometric scans, multi-factor authentication, and single sign-on (SSO).
How Does Web Access Management Work
- User authentication: It must verify the user’s identity when accessing a web resource.
- Access control: After authenticating the user, it determines what they can access based on predefined policies.
- Single sign-on: It usually has a single sign-on capability, requiring the user to authenticate only once.
- Audit and compliance: It records user activities, such as their activities and access to resources. This information can help companies investigate security incidents, audit for purposes, and prove compliance with regulations.
History of WAM
WAM emerged in the 1990s alongside the World Wide Web. It acted as identity and access management (IAM), merging access control and user verification. This allowed network managers to assign appropriate access rights and protect networks.
Single Sign-on (SSO) was one of WAM’s early key features, which enabled users to access multiple areas with a single login. WAM has advanced to manage identities across various domains, expanding its effectiveness.