Fähnrich, NicolasWinterstetter, MatthiasKubach, MichaelRoßnagel, HeikoSchunck, Christian H.Mödersheim, Sebastian2022-06-072022-06-072022978-3-88579-719-7https://dl.gi.de/handle/20.500.12116/38709In order to build identity management (IdM) solutions that are secure in the practical application context, a holistic approach their IT-security risk analysis is required. This complements the indispensable technical, and crypto-focused analysis of risks and vulnerabilities with an approach that puts another important vector for security in the center: the users and their usage of the technology over the whole lifecycle. In our short paper we focus exclusively on the user-centric approach and present an IT-security risk analysis that is structured around the IdM lifecycle.enidentity lifecycleuser-centricrisk analysisIT-securitycybersecuritysocial engineeringText/Conference Paper10.18420/OID2022_091617-5468