A list of entities, together with their access rights, that are authorized to have access to a resource.
Sources:
NISTIR 5153
under Access Control List
from
ISO DIS 10181-2