@conference{2008_AP2PS_Markov,
author = "Jes{\'u}s Esteban D{\'i}az Verdejo and Maci{\'a}-Fern{\'a}ndez, Gabriel  and Garc{\'i}a-Teodoro, Pedro  and Jes{\'u}s Nu{\~n}o Garc{\'i}a",
abstract = "The popularity of P2P networks makes them an
attractive target for hackers. Potential vulnerabilities in the
software used in P2P networking represent a big threat for
users and the whole community. To prevent and mitigate the
risks, intrusion detection techniques have been traditionally
applied. In this work in progress, a Markov based technique is
applied to the detection of anomalies in the usage of P2P
protocols. The detector searches for two kinds of anomalies:
those that appear in the structure, grammar and semantics of
each of the messages in the protocol, and those associated to
the sequence of messages (protocol sessions). Previous results
from other protocols, as HTTP and DNS, confirm the
potentialities of the approach.",
editor = "Proceedings of the First International Conference on Advances in P2P systems (AP2PS)",
month = "Octubre",
pages = "156-159",
title = "{A}nomaly {D}etection in {P}2{P} {N}etworks {U}sing {M}arkov {M}odelling",
url = "http://ceres.ugr.es/~gmacia/papers/AP2PS09_Markov_PublishedVersion.pdf",
year = "2009",
}