What are preventive controls used for in network security?

Preventive controls in network security are designed to proactively mitigate the risk of security violations before they occur. This means that these controls serve to prevent unauthorized access to systems and sensitive data, ensuring that only authorized users have access to specific resources. By enforcing access control mechanisms, such as authentication processes (like passwords or multi-factor authentication) and authorization protocols (such as role-based access control), preventive controls help create a barrier that discourages potential attacks.

Preventive controls also encompass other measures, such as firewalls, intrusion prevention systems, and security policies, all aimed at stopping threats before they impact the network. Their primary function is not merely to detect or respond to threats after they happen, but rather to establish a secure environment that minimizes vulnerabilities from the outset.

By implementing these controls, organizations can effectively reduce their attack surface and bulletproof their defenses against malicious activities. Thus, option C accurately reflects the core purpose of preventive controls in network security.