Which access control type aims to reduce the severity of an attack after it occurs?

The focus of corrective access control is to reduce the impact of an attack once it has already occurred. This type of control is designed to restore systems and data to normal operations after a security incident, mitigating the effects of the breach or compromise. Corrective controls include measures such as data backups and recovery procedures, incident response plans, and changes to systems intended to fix vulnerabilities. Through these measures, organizations can recover from incidents more efficiently and minimize damage, thus ensuring a swifter return to business as usual.

In contrast to corrective controls, preventative measures aim to stop attacks before they occur, deterrent controls work to discourage potential attackers, and detective controls are designed to identify and alert to breaches as they happen. While these are all key components of a comprehensive security strategy, they are distinct in their functions.