A company has implemented a system that locks user accounts after three unsuccessful login attempts. Which type of security control does this exemplify?
Locking user accounts after three unsuccessful login attempts is an example of a preventive control. It aims to prevent unauthorized access by stopping an action or event before it can occur. In this case, it is preventing a potential attacker from guessing a user’s password through repeated attempts.
Learn More
AI Generated Content may display inaccurate information, always double-check anything important.
How do account lockout policies work?
What is the difference between preventive and detective controls?