P
Policy Enforcement Point (PEP)
Definition
(Context: Software)
This system is responsible for enabling, monitoring, and eventually terminating connections between a subject and an enterprise resource. PEP is a single logical component in a zero-trust architecture but may be broken into two different components: the client (e.g., agent on user’s laptop) and resource side (e.g., gateway component in front of resource that controls access) or a single portal component that acts as a gatekeeper for communication paths.
Reference:
EA-Solution-Data-Availability-Requirements.pdf (virginia.gov)