Network Defense Essentials (NDE) Practice Exam

The concept of preventative controls is centered around measures that are implemented to stop unauthorized access and protect network resources from potential threats. These controls are proactive in nature, aiming to intercept and block any attempts to exploit vulnerabilities before they can lead to security breaches. Examples of preventative controls include firewalls, access control lists, encryption, and authentication mechanisms, all of which serve to establish barriers that attackers must overcome to gain unauthorized access.

While detective controls are designed to identify and respond to security incidents that have already occurred, and deterrent controls aim to discourage potential attackers through warning signs or policies, they do not directly prevent unauthorized access. Compensating controls are alternative measures put in place to fulfill the requirements of a primary control that may be otherwise ineffective, but again, they are not specifically focused on preventing unauthorized access upfront. Thus, the emphasis on stopping unauthorized access clearly aligns with the definition and purpose of preventative controls.