The Policy Enforcement Point (PEP) is a logical instance on a server with which the policies for access controls are regulated. It is a type of security appliance
that protects one or more endpoints. The PEP point is part of the policy management system, such as the Common Open Policy Service
(COPS), that handles user requests for use of server or network resources according to access policies. The policy enforcement point enforces policies related to subscriber authentication and authorization of access to services, reservations, mobility, and more. Policy enforcement points are also points at which the network state can be monitored. Requests to use a resource are routed to the Policy Enforcement Point (PEP) and forwarded by it to a Policy Decision (PDP) Point or Policy Decision Service (PDS), where they are checked and transmitted back to the PEP Point. This then allows access to the desired resource.