University of Southern California


CS530L - Security Systems
lab component
David Morgan

see "Syllabus" link for email address

German "Enigma" cryptographic device




Lab policies

Student lab times

CS530 main class

DETER net testbed
  get/use an account

a vi cheat sheet


Cryptography & Key Mgmt



Application security

Packet sniffing

Firewalls (DETER)

Intrusion detection

Arp spoofing (DETER)

Tunnels and vpns (DETER)

Computer forensics (DETER)





FALL 2018
lecture 4:30p - 5:20p Fri OHE122

In the past century, information systems security was the limited focus of the military and the financial communities. Now, with the explosive growth and merging of telecommunications and computing, security has become an integral element of any reliable and robust information systems environment. This class will cover information systems security at the graduate level. Students should have a basic understanding of networking and operating systems prior to attending the class.

Thank you for your efforts and interest in this subject and class. I enjoyed the opportunity to teach it. (11/9)

Make-up lab last Monday. I have prepared a list of changes for the graders. It reflects students who, this week
 - emailed me, or
 - submitted work
on older labs that were due in the past. They are:

Bai, Bathala Vijayabhaskar, Bhat Karkala, Cheng, Choi, Ghetian, Ramasamy Gurumurthy, Roski Amendola, Shetty

My list does not reflect students who may have spoken to me Monday about a particular lab but did not follow up with an email message or re-submittal. If we worked/spoke together Monday, contact me to include you in my list of changes before I pass it to the graders.  (11/9)

Fall 2019 CS530 grader position - information here. (11/2)

Do not attend the OHE406 lab for the current "firewalls" exercise. It is to be done remotely instead, on the DETER network testbed. (10/12)

Lab calendar adjusted - to avoid lab responsibilities during midterm exam week.

 - no earlier lab due exam week app security is due 10/12 instead
    (due date 10/1 for Monday and Den folks pushed back to 10/8)
 - no current lab performed exam week packet sniffing performed week of 10/8 instead
 - no lab lecture exam week Im going fishing, will return on 10/12 (9/21)

RSA key size recommendations - have traditionally been published by RSA.
NSA key size recommendations were newly published in January 2016 by NSA's Information Assurance Directorate. Encryption technologies' adequacy depends on key lengths. It diminishes as computers become faster and altogether new computing technologies emerge. NSA is anticipating, in particular, the maturation of quantum computing and its effect on public-key cryptography.
Former student Glenn Johnson researched this and called it to our attention. (9/7)

Email filter rule keywords used for managing the 10 reports you submit are:


for the respective labs we do over 10 weeks. Please be sure to embed these keywords in the titles of the email messages in which you will submit your work. (9/7)

Published: student lab times Please see link at left entitled "Student lab times." Check your timeslot assignment and attend accordingly please.  (8/29)

Manual RSA encryption/decryption of 23901 - 23901 is a nice number. Let's encrypt it. In the screenshot below you can see how it encrypts to some other number (like maybe 11409 or 30606 or something, depending on what key you apply) and how these can be back-processed to the self-same original 23901.

To do this you have to know what numbers to use for the math involved (what exponent? what divisor?). If you have the right ones, it works. If not... sorry. Coming up with numbers that work is called key derivation. (8/26)

Online student availability questionnaire (for on-campus but not DEN students) is at:   /

Please go there and express your schedule availability for labs. You will type in your name, but note the form only accepts names typed as they appear on the student list I obtained from USC, which you can examine on the form. Look yourself up on that list and enter your name into the form. Please respond by the end of the day Tuesday, August 28. Thanks. (8/24)

Slides from today's lecture in color or greyscale.(8/24)

First homework tasks -
 1) indicate your timeslot availability, as above. Respond as soon as possible please.
 2) as a tourist, visit the informational links listed at left under the heading "DETER net testbed". Gain initial familiarity with DETER at tourist level. We will arrange DETER accounts for you shortly.
 3) visit link at left entitled "Cryptography" under the heading "Labs." Our upcoming initial lab topic will be on the subject of cryptography. My lecture on the subject will be August 31, with corresponding lab exercise (the first one) performed the following week. (8/24)

My RSA lecture available online - Here are online slides, with my narration,  from the portion of next week's lecture covering the steps and math of the RSA algorithm. They are closely related to the first lab activity you'll do. You should listen to them if you like (it would definitely help) before coming to the lab. (8/24)

Which machine do we use, for which lab? - the various lab activities were developed to work on one or another of the 4 virtual machines installed in the lab. The instructions for each lab should tell you on which platform to do it. As a matter of record, here are the platforms corresponding the activities.


Lab calendar schedule - in specific detail for whole semester, to be posted here shortly. (8/24)

Strong recommendation - each week, preview or scan (visually) the lab instructions in advance before your lab session. It will enable you to do the exercises more efficiently, with greater understanding, and ensure you can finish before the lab ends. (8/24)

Support questions - try the discussion board found on DEN ( for CS530. If it's a question of general interest (maybe somebody else has the same question in mind) put it there. Alternatively, or for more specifically personal questions, email address, shared by me and the lab graders. (8/24)

Your graders - are Nitya Harve and Prerana Teligi Harapanahalli Math. Both are former CS530 students, therefore familiar with the lab exercises you will do. (8/24)

Lab location - room OHE406. The hardware-identical computers in this room have removable SSD drives. You will be assigned a drive. You will insert it in one of the computers when you arrive at the lab each week. You will put it in a locker afterward, where it will be stored for you until the following week's session. (8/24)

DEN students - most if not all of the lab exercises are performed in VMware virtual machines. We will make available images of the same vm's that are installed in the lab, for you to install on your machine. You will then be able to run that vm using VMware Workstation Player, which is distributed free from VMware. The lab handouts (instructions) will be posted online, here on this website, weekly. I intend to distribute the vm images to you via download, details to be communicated to you by email. (These are not for the consumption of on-campus students.) (8/24)