Category Archives: Uncategorized

Lab Devices with Unexpected Connection Attempts While performing exploratory data analysis on the MISTRAL flow records, the analysis team examined outbound traffic from the lab devices grouped by the source ips, destination subnets, and destination ports to identify a baseline for normal traffic per device.  One source IP in particular stood out for the unexpected […]

Continue Reading →

Slide deck: MISTRAL AB June 2024

Continue Reading →

In 2024, the project team expanded the monitoring fabric for the MISTRAL project. The hardware infrastructure was expanded from a single sensor node to 20 sensor nodes and dedicated switching hardware for tagging and load balancing scientific network captures.       In support of MISTRAL, OIT is deploying a network monitoring fabric designed to […]

Continue Reading →

Slide Deck: MISTRAL AB-Jan 2024

Continue Reading →

Slide Deck: MISTRAL AB-Sept 2023

Continue Reading →

After completing the data pipeline to move MISTRAL data into the storage environment from which it will be made available, we also created a data pipeline to ingest the MISTRAL data into our Splunk environment for (a) security correlations, and (b) creation of data visualizations. The initial visualizations focus on creating a baseline of the […]

Continue Reading →

Overview The Massive Internal System Traffic Research Analysis and Logging” (MISTRAL) project leverages and expands an internal network monitoring fabric and data collection points, and to create a privacy-preserving reference scientific security dataset (RSSD, the MISTRAL Dataset) and associated data pipeline and analysis techniques. Together we expect these approaches will aid the detection of abnormal […]

Continue Reading →