I'd say it is easier to control it on Windows.
If you remove file permissions for a user, he/she will not be able to see the QVW on the AcessPoint ( read and write permissions).
You could create folders for each type of application ( one for Home and one for Sports, for instance). Then, set the users that can or cannot see them.
On QEMC, you need to change authorization for DMS ( QEMC - Settings -> Setup -> QlikView Server -> Security Tab -> Authorization Area - >
DMS authorization (QlikView controls file access)
Then, on the documents section, you will have an addition tab - > Authorization. There you need to set, for every application the users that are authorized to open ( and see the application on accesspoint). I'd say it is more complicated...
hope this helps,