diff --git a/core/src/main/java/org/acegisecurity/acl/AclEntry.java b/core/src/main/java/org/acegisecurity/acl/AclEntry.java
index b6c2af521c..117c0b0f68 100644
--- a/core/src/main/java/org/acegisecurity/acl/AclEntry.java
+++ b/core/src/main/java/org/acegisecurity/acl/AclEntry.java
@@ -15,6 +15,8 @@
 
 package net.sf.acegisecurity.acl;
 
+import java.io.Serializable;
+
 /**
  * Marker interface representing an access control list entry associated with a
  * specific domain object instance.
@@ -22,4 +24,4 @@ package net.sf.acegisecurity.acl;
  * @author Ben Alex
  * @version $Id$
  */
-public interface AclEntry {}
+public interface AclEntry extends Serializable {}
diff --git a/doc/xdocs/changes.xml b/doc/xdocs/changes.xml
index 3aa2410f48..857b84f608 100644
--- a/doc/xdocs/changes.xml
+++ b/doc/xdocs/changes.xml
@@ -27,6 +27,7 @@
   <body>
     <release version="0.9.0" date="In CVS">
       <action dev="benalex" type="update">ContextHolder refactored and replaced by SecurityContextHolder</action>        
+      <action dev="benalex" type="fix">Made AclEntry Serializable (correct issue with BasicAclEntryCache)</action>        
       <action dev="luke_t" type="update">Changed order of credentials verification and expiry checking in DaoAuthenticationProvider. Password must now be successfully verified before expired credentials are reported. </action>        
       <action dev="benalex" type="update">AnonymousProcessingFilter offers protected method to control when it should execute</action>
       <action dev="benalex" type="fix">AbstractAuthenticationToken.getName() now returns username alone if UserDetails present</action>