Details

Item: Authorization
Description: Authorization is the function of specifying access rights/privileges to resources, which is related to information security and computer security in general and to access control in particular. More formally, "to authorize" is to define an access policy.
Source: NIST SP 800-37
Context: Identity