Each permission rule in an [[Access Control List (ACL)]] is known as an _access control entry_ (ACE), which controls access to an object by a specified trustee, such as a person, group, or session.