Once the user's authenticity is verified, JNFS determines if that user should is authorized to access a file. The jnfs.security package provides a PermissionGranter abstraction that determines if a particular FileSystemUser should be granted access to a file. It grants access to files by comparing Access Control Lists to rules specified in an access control policy.