(TOGAF) A security service that ensures only those users with the correct rights can access a specific device, application, or data.
(ISACA) The processes, rules and deployment mechanisms that control access to information systems, resources and physical access to premises.