Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
A policy decision point PDP evaluates access requests against policy and issues permit or deny decisions, a core component of zero trust per NIST 800-207.
Policy Decision Point (PDP) Definition: A policy decision point PDP evaluates access requests against policy and issues permit or deny decisions, a core component of zero trust per NIST 800-207.
A policy decision point PDP is the component in an access control architecture that evaluates access requests against policies and renders an authorization decision to permit or deny. Central to zero trust and the NIST SP 800-207 model, the PDP works with the policy enforcement point PEP, which carries out the decision, and consumes context such as identity, device posture, and risk signals to make dynamic, per-request access determinations.
Turn knowledge into credentials with our instructor-led cybersecurity boot camps.
View All Courses →