Policy Decision Point Services

Description: The Policy Decision Point (PDP) Services provide authorization decisions by evaluating digital policies against the attributes of an authorization request. The request can contain attributes about the subject of the request (the service consumer), the object of the request (the resource that is being accessed), the action that is being performed and other attributes not related to the subject or resource (the “environment”). A decision is returned to the requesting entity, which can contain further obligations about how the request is to be treated. The PDP can be collocated with a Policy Enforcement Point (PEP) to improve performance.

The following mandatory standards are recommended for this taxonomy node:

The following candidate standards are recommended for this taxonomy node: