Term · 27. Emerging Categories 2024-2026
Identity Threat Detection and Response ITDR
Definition
Detection of identity-based attacks (credential stuffing, password spray, account takeover, privilege escalation, lateral movement, Golden Ticket / Pass-the-Hash, ransomware-driven AD attacks) with automated response playbooks. Coined by Gartner 2022. Complements traditional EDR/XDR by focusing on identity layer.
- Synonyms
-
- Identity-based threat detection
- Application
- Regulatory: Gartner Magic Quadrant / Hype Cycle · KuppingerCole Leadership Compass
- Standards & regulations
-
- Gartner
- KC
- Sources
-
- Gartner — Identity Threat Detection and Response (ITDR) primary source
Related terms
-
AI Agent Identity
Identity assigned to an autonomous AI agent acting on behalf of a human or workflow. Distinct from human identities (wit …
-
Continuous Adaptive Trust
Authentication and authorization paradigm where trust is recomputed continuously throughout a session based on real-time …
-
Identity Control Plane
Centralised policy and orchestration layer governing identity decisions across heterogeneous IAM, IGA, PAM, and authoriz …
-
Identity Security
Industry-recognized discipline (Gartner / KuppingerCole / Forrester) treating identity as the new security perimeter. En …
-
Identity Security Posture Management (ISPM)
Continuous monitoring, assessment, and improvement of an organization's identity security posture. Coined by Gartner 202 …
-
Non-Human Identity (NHI)
Identities for service accounts, API keys, OAuth client secrets, machine certificates, workload identities (AWS IAM role …