Definition[]
Recovery controls
| “ | provide the means to respond to, rather than prevent, a security breach. The use of a recovery mechanism does not necessarily indicate a system shortcoming; for some threats, detection and recovery may well be more cost-effective than attempts at total prevention. Recovery from a security breach may involve taking disciplinary or legal action, notifying incidentally compromised parties, or changing policies, for example.[1] | ” |