<a href="https://colab.research.google.com/github/guilhermelaviola/CybersecurityProblemSolvingWithDataScience/blob/main/Class12.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# **Identity and Access Management**
Identity and Access Management (IAM) is a fundamental pillar of modern cybersecurity, ensuring that only authorized users access appropriate resources while meeting strict regulatory requirements. It encompasses identification, authentication, authorization, and user provisioning, with data science enhancing these processes by detecting anomalies and improving access policies. Strong incident response planning and adherence to privacy regulations such as GDPR and LGPD are essential to minimize risks, protect personal data, and maintain organizational trust. Effective IAM practices help organizations safeguard their systems, ensure compliance, and prevent security breaches and reputational damage.

## **Role-based access control example**
The example below demonstrates a basic access control check based on user roles.

In [1]:
users = {
    'alice': {'role': 'admin'},
    'bob': {'role': 'user'}
}

permissions = {
    'admin': ['read', 'write', 'delete'],
    'user': ['read']
}

def can_access(username, action):
    role = users.get(username, {}).get('role')
    if role and action in permissions.get(role, []):
        return True
    return False

# Example usage:
print(can_access('alice', 'delete')) # True
print(can_access('bob', 'delete')) # False

True
False


## **Authentication and anomaly detection example**
The following examples shows authentication with anomaly detection, which aligns with IAM and data science concept.

In [2]:
# Simulated user login data:
users = {
    'alice': {'password': 'secure123', 'usual_location': 'Brazil'},
    'bob': {'password': 'pass456', 'usual_location': 'Germany'}
}

def authenticate(username, password, location):
    user = users.get(username)
    if not user:
        return 'Authentication failed: user not found'

    if password != user['password']:
        return 'Authentication failed: incorrect password'

    # Anomaly check (location-based):
    if location != user['usual_location']:
        return 'Authentication successful, but suspicious login detected'

    return 'Authentication successful'

# Example usage:
print(authenticate('alice', 'secure123', 'Brazil'))
print(authenticate('alice', 'secure123', 'USA'))
print(authenticate('bob', 'wrongpass', 'Germany'))

Authentication successful
Authentication successful, but suspicious login detected
Authentication failed: incorrect password
