== AAA overview ==
Access control is an optional service on the SENSEI test platform. Each public interface in the system can be access controlled or not, at the owner's discretion. 
Two basic components are required in the system to enable access control:
* an identity provider, which in the SENSEI architecture is a Security Token Service
* an access control decision making function, which in the SENSEI architecture is a AAA block

[[PageOutline(2-3,Table of Contents,inline)]]

== How-to: adding access control to my REP ==
=== Choosing the form of access control ===
privilege or payment based
tbd

=== Defining an access policy ===
needs to refer to the STS role list
tbd
=== Registering the policy ===
selection of AAA block
registration of policy
changing / removing the policy
tbd
=== Enforcing the AAA decision ===
switching on the right bits in the REP
tbd