What Is Authorization? Definition & Comparison with Access Control

Most people know what the word "authorize" means in everyday life. We use this term to describe access based on some kind of role, status, or merit. For example, we're authorized to eat in the campus dining room due to our status as a college student. 

In computing terms, "to authorize" means to identify the digital resources someone can access after they log in to a system. 

If you're confused by these terms, don't worry. Let's dig a little deeper.

A Formal Authorization Definition 

Authorization is the process of matching users to the right digital assets. The work starts with policy. 

A person with authority, such as a department head or IT manager, determines what access a person should have. They could define access rules by:

  • Departments. Every person that works within a specific group has access to the same files. 
  • Titles. Access varies depending on the role a user plays within the company. 
  • Individuality. What a person can see depends on the work a person does, seniority within the company, or something else altogether. 

Crafting