Scheme Policies

Through the use of scheme policies, data access administrators can restrict data users or groups in their use of specific encryption or presentation schemes.

Access Manager: Scheme Policies page is part of the Privacera Encryption service and is enabled when the Privacera Encryption Gateway (PEG) service is added and configured. Its layout, organization, and functions are analogous to Access Manager: Resource Policies.

A scheme service is a set of scheme oriented access and usage policies. The privacera_peg scheme service contained in the PEG service group is automatically created when the PEG service is enabled.

The privacera_peg service contains a set of scheme policies, which are the means to scope use of encryption and presentation schemes to individual or groups of data users.

Click on privacera_peg to access and manage a list of existing scheme policies and to add and define new policies.

As with Resource Policies, each scheme policy has a Name, Description, associated Labels and access (usage) control rules grouped by setting Allow and Deny conditions and exceptions to Allow and Deny. The difference is that the target of control for Scheme policies are Encryption Schemes and Presentation Schemes rather than data resources.

For specifics on Scheme Policy creation and editing, see .


Last update: August 16, 2021