Introduction to AOP Any computer application or system deployed in an enterprise environment has to deal with multiple distinct concerns. Some of them are cross-cutting, meaning they should apply globally across the system. Typically this includes logging, validation and authorization concerns.
In the land of XACML, general access control queries are of the form “can user A read document D?” The Policy Enforcement Point (PEP) sends these request to Policy Decision Point (PDP) and enforces the response decision Permit/Deny. But in most of enterprises, the access control queries are not