The Policy Decision Point (PDP) Services provide authorization decisions by evaluating Digital Policies (DP) and and Meta-Policies (MP) against the attributes of an authorization request. The request can contain attributes about the subject of the request (the service consumer), the object of the request (the resource that is being accessed), the action that is being performed and other attributes not related to the subject or resource (the "environment"). A decision is returned to the requesting entity, which can contain further obligations about how the request is to be treated. The PDP can be collocated with a Policy Enforcement Point (PEP) to improve performance. One of the main functions of the PDP is to mediate or deconflict DPs according to MPs.
|
|
UUID | f9b492da-a24a-4eaa-b797-0fc1c37068ec |
stereotype | Taxonomy Element |
C3T UUID | f9b492da-a24a-4eaa-b797-0fc1c37068ec |
C3T URL | https://tide.act.nato.int/mediawiki/taxonomy/index.php/CR-1113 |
C3T Version | Update required |
C3T Date | |
Creator | NATO |
Publisher | NATO Digital Staff |
Classification | Unmarked |
Policy Identifier | Public |