How would nonrepudiation be BEST classified as?

A.
A preventive control

B.
A logical control

C.
A corrective control

D.
A compensating control

Explanation:
Nonrepudiation is the assurance that someone cannot deny something. Typically, nonrepudiation refers to the
ability to ensure that a party to a contract or a communication cannot deny the authenticity of their signature on
a document or the sending of a message that they originated.
For example, if a user sends a message and then later claims he did not send it, this is an act of repudiation.
When a cryptography mechanism provides nonrepudiation, the sender cannot later deny he sent the message
(well, he can try to deny it, but the cryptosystem proves otherwise). It’s a way of keeping the sender honest.
Nonrepudiation is a preventive control – it prevents someone having the ability to deny something.
Incorrect Answers:
B: Logical controls (also called technical controls) are software or hardware components, as in firewalls, IDS,
encryption, identification and authentication mechanisms. Nonrepudiation is not a logical control.
C: Corrective controls are used to restore systems after an attack or other harmful occurrence. Nonrepudiation
is not a corrective control.
D: Compensating controls are used to provide an alternative measure of control. Nonrepudiation is not a
compensating control.

http://searchsecurity.techtarget.com/definition/nonrepudiation
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, p. 770