0
3.1.0
Yokohama, Xanadu, Washington DC, Vancouver
This plugin contains the UI components for Policy as Code Engine (PaCE).
Policy as Code Engine (PaCE) is a generic framework that enables users and application services to define and use policies. These policies are a set of pre-defined rules that determine the behavior of that application or service. When invoked, the rules in the policy are applied to the provided input, and a decision is reached. This decision-making is the main function of PaCE and determines if a policy is compliant or non-compliant. The decision is then relayed to the application or service so that it can act upon it to enforce a required behavior.
PaCE can be used to:
- Identify posture drifts from a desired state in the current application.
- To make decisions (compliant or non-compliant) based on a change in the application or service and enforce the decision to prevent drift.
- Automate execution of policies and eliminate dependency on humans.
- Standardize policies to be shared and reused within a service and across services.
- Increase change velocity while including guardrails with automated workflows.
- Collect evidence and proof of compliance. The rich audit capabilities allow internal auditors to collect evidence for governance and risk requirements.
This plugin contains the UI components to support the UI functionality of Policy as Code Engine (PaCE).
PaCE provides the following capabilities:
- Full lifecycle management of policies
- Create policies using low-code/no-code or JavaScript
- Create new policies, create new versions, and archive old versions
- Policy reusability
- Templates management
- Templates for creating policies
- Data collectors - collect data and make it available to policy logic
- Nesting of policies for decision making or condition (up to 2 levels)
- Audit and compliance
- Best practices through content packs
- Testing and validation of policies
- Policy logic debugging
- Central automation of compliance and regulatory processes
- Data Collectors to get data from complex data sources or external data sources
PaCE provides a centralized platform for storing, managing, and using policies. By using PaCE, policies can be:
- Well-documented, and all the requirements are clearly defined
- Reused across the organization
- Tracked and new versions can be created when a policy is changed
- Tested and validated before deployment
- Integrated into Policy and compliance workspace
- Exception management (for Dynamic or Static Mapping)
New
- PaCE now supports nesting policy for decision-making in the logic section, and up to two levels are supported (a child and a grandchild).
No dependency on other plugins.