AWS training at CI in the Spring 2020

For questions please contact: jeff.ziskin@csuci.edu (805-437-2653)

In the Spring 2020 I am going to teach two classes on Amazon Web Services (AWS), under the auspices of the AWS Academy, both open to the public:

  1. Cloud Foundations: from January 11 to January 25, with two in-person meetings (Saturday January 11 and Saturday January 25), and online otherwise.
  2. Cloud Architecting: from March 7 to March 21, with two in-person meetings (Saturday March 7 and Saturday March 21), and online otherwise.

We are following exactly the AWS curriculum, and students will be provided AWS Educate cloud accounts with credits for the duration of the classes, as well as vouchers for writing the corresponding certification exams.

Winter class at CI in Cloud Computing

Last week we sent a Qualtrics survey to our Computer Science and IT students to gage the demand for a Cloud Foundations class this winter session (December 21 to January 19).

This class would be taught online, as a COMP 490, using the resources we have at our disposal as part of the AWS Academy. The class would count as an elective, with cost-free AWS accounts for students, as well as vouchers to take the certification exam from AWS (for those who want to do so).

This class would be a good preparation especially for those students who will be looking for jobs, as “Cloud Computing” skills have ranked #1 on LinkedIn and other sites over the last 5 years!

Given the resounding interest in the class as shown on the Qualtrics survey:

we have decided to offer the class if there indeed is enough enrollment and the class is approved. The provisional web site for the class is here.

AWS Imagine edu conference

Seattle, July 8-11, 2019

AWS IMAGINE: A Better World, A Global Education Conference

I am attending the AWS Imagine education conference in Seattle. This is a conference hosted by AWS for educators who are interested in offering an AWS based Cloud Computing track at their institutions. I am happy that in the keynote by Andrew Ko, the CSU was mentioned as one of the partner university system: at CI we are offering Cloud Computing with AWS tools to our students, and we are also leveraging the resources of AWS for research. The San Luis Obispo (SLO) campus has been working with AWS tools as well (see Cal Poly Launches World’s First University-Based Cloud Innovation Center Powered by Amazon Web Services). I had the pleasure of meeting Chris Lupo, the chair of Comp Sci at SLO; other CSU campuses, such as Northridge, have also worked with AWS.

Education is built on AWS slide

Partnering with AWS: Community Colleges (CC) have already partnered with AWS in some states. At the conference we heard from Sharron Morrissey from the Virginia Community College System, where AWS was introduced comprehensively in the entire system. The Virginia CCs are able to capitalize on the fact that Amazon chose Arlington (Virginia) as the site for its 2nd headquarters, and the preponderance of data-centers in Virginia. We also heard from Monty Sullivan, the president of the Louisiana Community Colleges system, who spoke about “educational institutions are not any more in the business of furnishing diplomas, but rather they are the gateway into the job market”. Finally, we heard from Sheneui Weber who spoke about the CCs in California, and their thriving partnership with AWS: she cited a study showing that there are about unfilled 30,000 jobs in Cloud Computing in LA County and Orange County, and 5,000 of those jobs specifically mention AWS.

Amazon Fiona building

On Monday, at the Amazon Fiona building, I attended an excellent workshop conducted by the AWS Educate team on how to integrate the AWS curriculum in different degrees – my interest was to explore the possibility of introducing AWS into the Computer Science program (or the IT program) at CI. Some of the resources that AWS offers could also be deployed in our Mechatronics Engineering program (such as AWS Robomaker). At the workshop I was interested in the experience of George Mason University that partnered with Nova and AWS. Just last month this partnership announced a Bachelor of Applied Science (BAS) pathway in cloud computing.

For us at CI, the benefits of such a pathway would be as follows:

  • As we have a hands on practical degree, we are more or less ready; we would have to introduce examples of AWS tools in 3 or 4 courses, such as Networking (COMP 429), Databases (COMP 420) and Cybersecurity (COMP 424), and possibly some DevOps in our Software Engineering class (COMP 350).
  • Once approved by Amazon Educate, students would have then the ability to have educational AWS accounts with some credits, as well as access to the AWS job forum, and vouchers for AWS certification. They would also be more ready for the rapidly expanding Cloud Computing job market.

As a university we have to be technology agnostic to some extent, but since AWS is a platform, on which one can deploy practically any technology, we would not be teaching one tool. Also, we should compare and contrast the AWS offering to other solutions such as Google Cloud and Microsoft Azure. In any case, Cloud Computing is becoming the new computing paradigm, and in order to give our students the best degree possible, we need to teach it.

Rich Mendola from Emory on Building a Secure and Manageable Cloud Environment

I was keen to hear a talk on Machine Learning by Balaji Iyer, as we are currently using AWS SageMaker on a Navy Cybersecurity project. I also really enjoyed an excellent talk by Rich Mendola from Emory, on Building a Secure and Manageable Cloud Environment. It was interesting to hear about the AWS Shared Responsibility Model, a very interesting concept from the Cybersecurity point of view: AWS has built and maintains an extremely secure infrastructure, but it is up the the user to wield the tools correctly in order to maintain security.

Finally, I was excited to be for the first time in a city (Seattle) with the 5G cellular network 🙂

AWS update

Recently, Computer Science at CI, has made several new connections with AWS:

  • We are an approved member of the AWS Academy and we are authorized to deliver the AWS Academy Cloud Computing Architecture curriculum. I am the Central Point of Contact (CPOC), so if anyone is interested in being nominated to be an AWS Academy instructor at CI, please get in touch with me. [letter]
  • We are part of the AWS Educate initiative, and we were able to offer our COMP 529 students accounts with some credit. Note that an issue with AWS training accounts is that they close after the course is finished; to those students who are able, I would suggest to open your own (or your company’s) account so that as you learn the material you can build your own permanent infrastructure. A compromise is to build the initial infrastructure on a training account, and use “CloudFormation” to export it for re-instatement elsewhere.
  • Almost finished teaching COMP 529, “Cloud Computing,” for the first time using the AWS resources. We used the AWS Certified Solutions Architect official study guide .
  • I have been selected for the AWS Cloud Ambassador program, which offers educators recognition, professional development, and exclusive benefits for helping students learn about the cloud.
  • I have completed by own AWS certification as a Solutions Architect.

Geetanjali Agarwal successfully defended her MSCS thesis on image recognition

My student Geetanjali (Geet) Agarwal defended her masters thesis titled Aneka – Wavelet Image Hashing Algorithm, see announcement, where the contribution is a framework of hashing algorithms for image recognition. This important work is done in collaboration with the SoCal High Technology Task Force (HTTF). Geet deployed the AWS to accomplish her results, including EC2 instances and MySQL databases used to run experiments on thousands of images. Geet’s thesis will be available after the final draft is ready.

COMP 529 Cloud Computing using AWS Cloud Computing Architecture curriculum to be offered in Spring 2019

The class will be held on Thursdays 6:00-9:00 (January 24 will be the first day of instructions), in Sierra Hall 1131.

Since this is a lab-based course, there are only 24 seats.

AWS/CSU Research in the Cloud series

It was a pleasure to speak at the AWS/CSU Research in the Cloud series. By nature I am not a strong promoter of any technology, and the browser, OS or editor “wars” frankly bore me; I sometimes use a “lesser” technology because it happens to be more convenient, or because I don’t have the time to learn a “better” technology, or many other good reasons.

However, as a researcher and teacher I am absolutely thrilled with what AWS has to offer. I regularly give tours of our computer labs at CSU CI (to local companies, prospective graduate students, CSU trustees, fundraising prospects, etc.), and I explain that three things make it possible for a relatively small and unknown campus like ours to compete in scientific & engineering output in the national and international arena:

  1. How cheap embedded systems have become; a Google Raspberry Pi is $35, and it comes with Linux and GPIO that makes it into a universal controller.
  2. How cheap 3D printing has become, and in turn this frees us to some extent from having to build an expensive manufacturing lab.
  3. And AWS: Amazon Cloud Computing Services. Instead of buying, maintaining, cooling and powering expensive servers, we can immediately utilize the required services, and pay as we go. This works very well for a university because we do not have to make up-front capital investments, and our usage is not always the same (e.g., practically no classes in the summer).

Material related to the talk

  1. Examples of AWS related projects that my students and I have undertaken over the last year: http://prof.msoltys.com/?tag=aws.
  2. AWS presentation slides.
  3. Video of the presentation (my talk start at about 12min)

Voyager: an implementation of a tracking pixel

Voyager is a software that implements what is called an invisible bit (aka, a tracking bit), that can be used to track certain activities. Voyager deploys the AWS network infrastructure, and its Data Base, the Relational Database Service (RDS). Voyager has been implemented at CI by a group of Computer Science students, as a Research & Development project for the HTTF. From AWS website:

Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides cost-efficient and resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching and backups. It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.

For this project, we are also using the following tools: EC2, S3 and Route 53.

Using AWS on a project in collaboration with SoCal HTTF to decrypt a password

Anyone working in the field of Digital Forensics is aware that a substantial portion of time is dedicated to reverse engineering passwords. That is, in most cases a digital forensics investigator receives a password-protected handheld device, or a laptop with an encrypted hard disk, or a Microsoft Word document which has been password protected.

It is then the task of the investigator to try to retrieve the evidence, and that in turns requires reverse engineering the password; in some cases this can be achieved by recovering the hash of the password, which is stored somewhere (the locations are often known) on the device’s memory.

In order to obtain the password from the hash, we have to run a brute-force search algorithm that guesses passwords (the guesses can be more or less educated, depending on what is known about the case). Sometimes we get lucky. There are two programs that are used extensively for this purpose: John the Ripper and hashcat.

As we have been studying methods for recovering passwords from hashes, we have been using AWS EC2 instances in order to run experiments and help HTTF with their efforts. Together with senior capstone students as well as graduate students in Cybersecurity, we have been creating a set of guidelines and best practices to help in the recovery of passwords from hashes. AWS EC2 instances are ideal as they can be crafted to the needs and resources of a particular case. For example we are currently running a t2.2xlarge instance on a case where we have to recover the password of a Microsoft Word document; we have also used a p2.16xlarge with GPU-based parallel compute capabilities, but it costs $14/hour of usage, and so we deploy it in a very surgical manner.

In the Spring 2019 we will be offering Cloud Computing (COMP 529) using AWS Cloud Computing Architect curriculum

As I am working through the AWS Academy Cloud Computing Architecture – Instructor Accreditation, we are going to offer COMP 529, our Cloud Computing course in the Computer Science masters program, using the AWS curriculum. This is a service offered through the AWS Academy. The students who complete the course will be ready to take the AWS Cloud Solutions Architect certification.

The first lecture will be on Thursday January 24, 2019, in Sierra Hall 1131 (the Computer Science Networking & Security Lab).