 |
The management of access to IT-based resources can be divided into four areas:
- authentication
- who is trying to access the resource?
- authorization
- is she allowed to access the resource in this way?
- accounting
- ensures she is billed for the access
- auditing
- institution-wide retrospective on resource usage
Auditing is an after-the-fact look at resource usage and
how it might be streamlined or made more efficient or less expensive.
For example,
if the number of accesses to an external subscription database
exceed some threshhold value,
it may be more efficient to obtain and maintain an institutional subscription.
Construction
What other good things could an audit discover?
Say something about data warehouse here
|
