Granting (or denying) the right/permission of a entity to access a object. I.E. Specifying what a user can do.