Basically for sensitive permissions that don't already have a friction mechanism, add one (preferably authenticated one) to improve mistakenly providing sensitive permissions to apps.
I think for permissions like Phone, SMS, Call Logs, Photos etc, require an extra step to unlock using device credential (or fingerprint) to allow that to any app. No friction required for disallowing.
This mainly helps users trying to be anonymous accidentally tapping the allow button by mistake or slipping of phone while the dialog is shown, or a malicious "friend" doing wrong this when you temporarily give him access to your phone.