Comparing an authorized entity's granted access rights to the business responsiblities of that entity to ensure least privilege is being followed. In order to increase efficiency of the attestation process, the asset owners can be aided with information associated to the risk of each entitlement (additions, deletions, changes of roles or accounts that are associated to entities with increased risk or security incidents).