Which action is specifically aimed at preventing unauthorized access to passwords?

Keeping passwords secret is about protecting credential confidentiality. Passwords are what let someone prove who they are to access accounts and systems; if they are divulged or written down insecurely, an unauthorized person can log in and take control. Therefore, the practice that directly prevents unauthorized access to passwords is not sharing or exposing them, and treating passwords as confidential by handling them carefully, using secure storage, and enforcing strong password policies.

Backing up data helps recover from failures and disasters, but it doesn’t stop someone from obtaining or using passwords. Patch management addresses vulnerabilities in software to reduce exploitation risk, not the secrecy of credentials. A boundary firewall controls network traffic to block unauthorized access to systems, but it doesn’t safeguard the actual passwords from being disclosed or misused.