policy enforcement point (PEP)

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviations / Acronyms / Synonyms:

PEP

CNSSI 4009-2015

NIST SP 1800-15B

NIST SP 1800-7b

NIST SP 1800-7c

NIST SP 800-162

NIST SP 800-178

NIST SP 800-204B

NIST SP 800-207

NIST SP 800-211

NIST SP 800-215

NIST SP 800-95

NISTIR 8403

Definitions:

  A system entity that requests and subsequently enforces authorization decisions.
Sources:
CNSSI 4009-2015 from NISTIR 7657

  Mechanism (e.g., access control mechanism of a file system or Web server) that actually protects (in terms of controlling access to) the resources exposed by Web services.
Sources:
NIST SP 800-95 under Policy Enforcement Point (PEP) from OASIS: A Brief Introduction to XACML

  A network device on which policy decisions are carried out or enforced.
Sources:
NIST SP 1800-15B under Policy Enforcement Point (PEP)
NIST SP 1800-15C under Policy Enforcement Point

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.