In a ZTA, the logical combination of both the policy engine (PE) and policy administrator (PA) is called

In a ZTA, the logical combination of both the policy engine (PE) and policy administrator (PA) is called
A . policy decision point (PDP)
B . role-based access
C . policy enforcement point (PEP)
D . data access policy

View Answer

Answer: A

Explanation:

In a ZTA, the logical combination of both the policy engine (PE) and policy administrator (PA) is called the policy decision point (PDP). The PE is the component that evaluates the policies and the contextual data collected from various sources and generates an access decision. The PA is the component that establishes or terminates the communication between a subject and a resource based on the access decision. The PDP communicates with the policy enforcement point (PEP), which enforces the access decision on the resource.

Reference =

Certificate of Competence in Zero Trust (CCZT) prepkit, page 14, section 2.2.2

Zero Trust Architecture Project – NIST Computer Security Resource Center, slide 9

What Is a Zero Trust Security Framework? | Votiro, section “The Policy Engine and Policy Administrator”

Zero Trust Frameworks Architecture Guide – Cisco, page 4, section “Policy Decision Point”