Detection security improves the ability to notice and observe unusual or malicious behaviour taking place in or around the computer network. As previously discussed detection has a major advantage within internal security as merely detecting a threat is enough to take steps to prevent it. As the threats that exist take 3 different forms, there are three different categories of detection which are physical, data and activity detection.

Physical threat detection involves noticing and monitoring physical threats to the computer network, threats such as fire, theft, vandalism and any other physical threats that have a detrimental effect on the computer network. Some of the areas of physical threat detection are alarm systems, sensors, cameras and security guards although these are also useful in physical prevention.

Data threat detection involves noticing and monitoring data threats to the computer network, threats such as data theft, loss, corruption and any other data threats that have a detrimental effect on the data integrity. Some of the areas of data threat detection are honey tokens, steganography, ADS and other forms of detecting security breaches involving data.

Activity threat detection involves noticing and monitoring activity threats to the computer network, threats such as network activity, internet activity and any other activity threats that have a detrimental effect on the security of the computer network. Some of the areas of data threat detection are IDS, Internet monitors, Email/Chat monitoring and other forms of detecting security breaches involving activity.

Physical
Fire & Burglar Alarm Systems
CCTV & IP Cameras
Security Guard & Personnel
Security Lighting
Data
Alternate Data Streams
Steganography
Misinformation
Honeypots
Activity
Network Traffic Analysis
Keyloggers
Spy Software Packages
Forensic Tools
Monitoring Tools
IDS/IPS