This paper presents the design and implementation of Telecom’s enterprise-wide Authentication and Authorization Initiative, aimed at modernizing identity and access management (IAM) across a large-scale digital ecosystem. The initiative introduced a novel token taxonomy - Software/Application Tokens, People Tokens, and Device Tokens - enabling fine-grained, context-aware access control using RBAC, ABAC, and ReBAC models. A Security Library Framework was developed to centralize API token lifecycle management, incorporating low-code integration for developers and uniform enforcement across distributed systems.
Ankush Gupta (Wed,) studied this question.