Organizations are being forced to move towards identity-based access lifecycle management tools in order to support IT agility and flexibility, safely empower staff, meet compliance requirements, and cope with the rapid evolution of data centers and core systems. Robust identity management demands breadth in the entity being identified, granularity in managing the attributes associated with an identity, and easy integration into access control and auditing tools. An important corollary to identity is context: modifying user privilege based on where, when, and how an entity attempts to use it. Such capabilities are especially important and useful in ferreting out or preventing the abuse of access privileges, one of the main modes of insider system or data compromise.