policy enforcement point

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviations / Acronyms / Synonyms:

PEP

CNSSI 4009-2015

NIST SP 1800-15B

NIST SP 1800-7b

NIST SP 1800-7c

NIST SP 800-162

NIST SP 800-178

NIST SP 800-204B

NIST SP 800-207

NIST SP 800-211

NIST SP 800-215

NIST SP 800-95

NISTIR 8403

Definitions:

  A system entity that requests and subsequently enforces authorization decisions.
Sources:
CNSSI 4009-2015 under policy enforcement point (PEP) from NISTIR 7657

  Mechanism (e.g., access control mechanism of a file system or Web server) that actually protects (in terms of controlling access to) the resources exposed by Web services.
Sources:
NIST SP 800-95 under Policy Enforcement Point (PEP) from OASIS: A Brief Introduction to XACML

  A network device on which policy decisions are carried out or enforced.
Sources:
NIST SP 1800-15B under Policy Enforcement Point (PEP)
NIST SP 1800-15C

  Enforces policy decisions in response to a request from a subject requesting access to a protected object; the access control decisions are made by the policy decision point.
Sources:
NIST SP 800-162

About

See the identified Source document to understand each term-definition pair in its proper context.

Send inquiries about terminology to the Source's authors; NIST publications will usually include a contact email for that Source.

For other inquiries, such as comments about the Glossary's presentation and functionality, use this link.

See the Glossary homepage for more guidance.