The Root permissions define the general permissions for the whole application. Unless you specify specific page permissions, the rules you specify here are inherited by all the pages of the application.
The root permissions should be your first concern when you start securing an new application.
The page contains a permission matrix where you can define the access levels for each user group. For a description of how the matrix works, see the page permissions.