Afif Zirwan

DOI: https://doi.org/10.37034/jidt.v4i1.190

2022-03-20

Jurnal Informasi dan Teknologi

Abstract:The Covid-19 pandemic indirectly accelerated the 4.0 Industrial Revolution where technology became an important point in the industrial movement. Changes that are forced quickly, sometimes release some application developers to test the product to be implemented, because it is required quickly to compensate for the change. Padang Institute of Technology (ITP) also made rapid changes to its official website, to provide actual information of campus activities during this pandemic. Conduct testing and analysis of the extent of itp website security and provide troubleshooting advice from the results of the analysis. Testing is done using the Acunetix Vulnerability Scanner tool against the ITP website. The method used is descriptive analysis, which is the data obtained presented in the form of sentences described, thus providing clarity from the results of the analysis carried out.The results obtained from this study are ITP websites with acunex threat at level 3 which includes High theory and scanning time used for 2 Hours 5 minutes. In this study there were 714 alerts or gaps found consisting of 94 at high level, 25 at medium level, 46 at low level and 549 at informational level. Here is an explanation of the alert or loopholes found in the scanning website. From the analysis data it was concluded that in testing using acunetix itp website is at level 3, after improvement of itp website is at level 1.

A. M. Elhanafi,M. Hasibuan

DOI: https://doi.org/10.56211/sudo.v1i4.160

2022-12-08

Abstract:Sebuah perusahaan yang berkembang memerlukan sebuah website untuk menunjang kegiatan operasionalnya, namun yang sering menjadi permasalahan adalah bagaimana cara mengamankan data yang ada di web server agar terhindar dari pihak yang tidak bersangkutan. Dalam penelitian ini akan ditulis bagaimana cara mengetahui tingkat keamanan pada web server diva karaoke dengan melakukan pengujian penetrasi dalam suatu sistem dengan menggunakan perangkat lunak virtualisasi virtualbox untuk mengeksekusi sistem operasi kali linux. Pengujian penetrasi ini hanya untuk menguji tingkat keamanan sistem jaringan web server diva karaoke dengan menggunakan uji coba non destruktif yaitu uji coba yang tidak membuat kerusakan sistem. Penelitian ini dilakukan dengan melakukan analisis dan perancangan dengan menggunakan tools-tools yang ada di kali linux. Hasil penelitian ini menunjukkan tingkat kerentanan pada web server diva karaoke masih rendah, dibuktikan dengan adanya beberapa port TCP yang terbuka, situs web beresiko terhadap serangan clickjacking. Selain itu penelitian ini juga dapat menjadi tolak ukur sejauh mana perusahaan yang dievaluasi ini sudah bisa mengamankan data dari pihak yang seharusnya tidak mendapatkan akses terhadap data.

Utama Hasiolan Panggabean,Benfano Soewito

DOI: https://doi.org/10.19109/jusifo.v9i1.17365

2023-06-30

JUSIFO (JURNAL SISTEM INFORMASI)

Abstract:This study concentrates on examining the security of network infrastructure using the cyber kill chain framework approach. The research is conducted within a company operating in network security services. In its operations, it offers a Virtual Private Cloud (VPC) containing various crucial information such as applications, internal data, client data, and product demos. Despite the attractive features of cloud computing, there are significant threats as well. Handling attacks cannot be swiftly and efficiently executed, resulting in temporary operational unavailability until the attacks are resolved. This research delves into the security of the company's infrastructure by testing several points of vulnerability exploited by malicious parties. The cyber kill chain framework approach is employed to systematically assess the company's infrastructure. The study reveals that certain issues have been adequately detected; however, security gaps persist, as evidenced by the testing conducted and the inadequate response from the company's security systems.

Deuis Nur Astrida,Agung Restu Saputra,Akhmad Ikhza Assaufi

DOI: https://doi.org/10.33395/sinkron.v7i1.11249

2022-01-13

SinkrOn

Abstract:The use of computer networks in an agency aims to facilitate communication and data transfer between devices. The network that can be applied can be using wireless media or LAN cable. At SMP XYZ, most of the computers still use wireless networks. Based on the findings in the field, it was found that there was no user management problem. Therefore, an analysis and audit of the network security system is needed to ensure that the network security system at SMP XYZ is safe and running well. In conducting this analysis, a tool is needed which will be used as a benchmark to determine the security of the wireless network. The tools used are Penetration Testing Execution Standard (PTES) which is one of the tools to become a standard in analyzing or auditing network security systems in a company in this case, namely analyzing and auditing wireless network security systems. After conducting an analysis based on these tools, there are still many security holes in the XYZ wireless SMP that allow outsiders to illegally access and obtain vulnerabilities in terms of WPA2 cracking, DoS, wireless router password cracking, and access point isolation so that it can be said that network security at SMP XYZ is still not safe

Amilia Anggraeni,Jafaruddin Gusti Amri Ginting,Syariful Ikhwan

DOI: https://doi.org/10.20895/infotel.v14i4.813

2022-11-01

JURNAL INFOTEL

Abstract:Computer networks are built to achieve the main goal of communicating with each other . During the transmission process, it is expected that information can be conveyed quickly, efficiently and safely. Network security serves to avoid damage or even data loss caused by attacker activities during the communication process. Security aspects that need to be maintained in data information are Confidentiality, Integrity and Availability. Intrusion Prevention System is a solution that can maintain network security from various attacks. The Intrusion Prevention System will act as a protector on the network by detecting and preventing suspicious traffic on nodes in a network. The Intrusion Prevention System in its implementation has several tools which are used in this study, namely Snort and IPTables. Testing is done by performing attacks on the Web Server. The attacks carried out are Port Scanning, DDoS attacks and Brute Force. The results of this study are based on the CIA Triad with the three attacks having different characteristics in terms of cause and effect. On the defense side, Port Scanning and Brute Force can be easily prevented by IPS, but in DDoS attacks there are differences in results between drop and reject rule. In a DDoS attack with an action drop rule, it can recover the web server in 160 seconds while the action reject rule can be restored at 145 seconds which normally can be recovered in a DDoS attack in 165 seconds. The IPS server can also reduce resources when there is a DDoS attack by 9.2% .

Rayco William,Ikhwan Ruslianto,Uray Ristian

DOI: https://doi.org/10.24114/cess.v8i1.40258

2023-01-21

Abstract:Server is a center for providing services and storing data in a computer network. A server is managed by server administrator who has a duty of monitoring security server. While on duty, there are deficiencies in detecting attacks, the slow information about the attacks, and how to handle attacks on the server. In this research, a server security system was created by implementing an Intrusion Prevention System (IPS) based on website and mobile applications. Attack detection focuses on ICMP and TCP port attacks with the latency time when the system responds to an attack is 99,89 ms (very good). The attack handling system was successfully carried out using Iptables against the attacker's IP that detected by the Suricata system through the website and mobile applications, to be given action which is divided into Drop, Reject and Accept. Administrators can quickly take the necessary precautions after receiving an automatic notification when the server is under attack via Telegram with an average speed is 3.41second. The ping attack, port scanning and ping of death (DoS) attacks resulted in an increase in the performance load on the local server with the initial conditions of CPU performance ranging from 10-19%, increasing when a ping attack occurred to 21,6%, memory 41,7%, and disk 19,6%. Port scanning increased by 85,9% CPU, memory 41,9%, and disk 20,3%. Ping of death increased CPU 90,4%, memory 42,9%, and disk 20,8%. Based on the tests that have been done, an excessive increase is found in the ping of death attack which results in server performance increasing to 90,4%, if the attack occurs for a long time then the server condition will be hang (damaged).

Inna Madiyaningsih,Kalamullah Ramli

DOI: https://doi.org/10.31943/gw.v14i2.476

2023-08-15

Gema Wiralodra

Abstract:Based on the report security year 2022 from company Z in the ICT sector, it was found that on the report firewall security, 96% of level threat is level critical, and 4% is level high. Report email security is session domain 27.3%; Session limits 15.35 %; Forti Guard AntiSpam-IP 3.11%, and the rest is receipt verification; directory filter and access control relay denied. With the challenge of current cyber-attacks, precious data assets need analysis to measure the the level of IT maturity that can ensure stakeholders' interest and maximize benefits and opportunities through technology information. We overcome limitations by analyzing IT maturity using COBIT 5. Research focused only on the APO13 and DSS05 process domains. A study was done to identify the problems based on results observation, checking, and use of a questionnaire in a direct manner. Measurement is done through method evaluation self and interviews deep with the IT team and all power expert who has COBIT certification 5. Analysis results show that the measurement level for the APO13 domain is 3, and for DSS05 is level 2. These results still need to be below the set level 4 target management; therefore, building a framework to monitor, track, and record security data in real time is necessary. With the build framework, Work can help lower the threat level from a critical level to a high level and increase the COBIT Maturity Level to APO13 and DSS05 according to organizational targets.

Nopri Dwipoyono,Khairil Khairil,Aji Sudarsono

DOI: https://doi.org/10.37676/jmi.v19i2.4355

2023-10-11

JURNAL MEDIA INFOTAMA

Abstract:Abstract- The Seluma 5 State Vocational High School does not yet have a firewall, so the computer network security at school is still very minimal, both in terms of limiting access to the network. Besides that, internet access at Seluma 5 State Vocational High School is used by teachers and staff to access internet pages by browsing to get information, but there are several teachers and staff who access social media pages and other pages which decreases the effectiveness of the performance of these teachers and staff. Implementation of a Firewall on a computer network security system at the Seluma 5 Vocational High School uses Iptables to monitor packet data traffic processes in the network. With iptables, you can manage network traffic on the server such as allowing, blocking or skipping incoming and outgoing connections, managing ports and so on on the Seluma 5 State Vocational High School Computer Network. Based on the tests that have been carried out, it can be concluded that the implementation of a firewall on the computer network security system at the State Vocational High School 5 Seluma is able to block the ping of death attack and is also able to open and close access to several ports in the network and block the websites facebook.com, instragram .com, and tokopedia.com

Esti Zakia Darojat,Eko Sediyono,Irwan Sembiring

DOI: https://doi.org/10.21456/vol12iss1pp36-44

2022-09-22

JURNAL SISTEM INFORMASI BISNIS

Abstract:E-Government is one of the local government's means of implementing service-oriented values and public information disclosure by providing the local government's official website. Vulnerability Assessment (VA) is a vulnerability assessment method by testing security vulnerabilities to find out all potential critical weaknesses of e-government websites, the aims is to support convenience and service improvement when using e-government websites. The method is using descriptive quantitative to analyze and evaluate security level of both e-government websites based on the NIST SP 800-115 method regarding technical guidelines for testing and assessing information security parameters and OWASP using two web vulnerability scanners. This study is to analyze and evaluate the results of vulnerability scanning on two different types of e-government web, namely the e-government web belonging to the local government and village government, the sample assessment using the semarangkab.go.id website belonging to the local government of Semarang Regency, Central Java Province. and gunungtumpeng.id which is the official e-government website owned by the Gunung Tumpeng Village Government, Suruh District, Semarang Regency, Central Java Province, Indonesia. Hasil penelitian menunjukkan ditemukan persamaan penilaian dalam hal kategori level ancaman dan jumlah kerentanan menggunakan kedua alat web vulnerability scanner, dan hasil yang berbeda terdapat pada durasi, kecepatan pemindaian, dan jenis temuan kerentanan. Kedua parameter OWASP dapat memberikan petunjuk dan penjelasan kompleks untuk membantu pengembang atau pihak pemerintah daerah melakukan pengambilan keputusan mengenai keamanan informasi pada web e-government yang dikelola.

Mohammed Alabbad,Neerja Mhaskar,Ridha Khedri

DOI: https://doi.org/10.1016/j.jnca.2024.103851

IF: 7.574

2024-04-01

Journal of Network and Computer Applications

Abstract:We study the problem of hardening the security of existing networks. Dynamic and static analysis are two main approaches that are used to address this problem. Dynamic analysis is performed using penetration testing. Penetration testing (short pentesting) simulates attacks on an existing and possibly dynamic network to identify its vulnerabilities without causing it any harm. Static analysis analyzes the access control policies of both network resources and firewalls without executing them. Although, dynamic and static analysis are extremely useful approaches, they also have several drawbacks. For instance, they do not identify vulnerabilities resulting from weak network segmentation, improper implementation of the Defence in Depth strategy, and an increased attack surface for a given resource or firewall. In this paper, we propose a novel approach termed as the referential penetration testing (RPT) approach to evaluate the security of networks. The RPT approach evaluates the network and checks for segmentation flaws, while checking for other traditional vulnerabilities. We then propose a novel framework, called the RPT framework, that incorporates the RPT approach to identify vulnerabilities in networks. The proposed framework is an application of the Digital Twin Technology in network security. We compare RPT to the network vulnerabilities assessment tools Nessus, OpenVAS, Qualys, Illumio, Tufin, and AlgoSec. The comparison reveals that RPT is different from the other tools on all the considered technical aspects, which indicates that it brings a novel approach to assess network segmentation. It has a very limited focus compared to the others, which makes it suitable for being used in combination with anyone of them to further enhance the robustness of the segmentation. Finally, we implement this framework in the Software Defined Network (SDN) environment and discuss its usefulness.

computer science, interdisciplinary applications, software engineering, hardware & architecture

Dewi Laksmiati

DOI: https://doi.org/10.47709/cnahpc.v5i1.1991

2023-01-19

Abstract:The digital world has seen a significant increase in security threats in recent years, with hacker attacks on websites being a major concern in cybersecurity. One platform that is particularly vulnerable is WordPress, which is widely used and therefore a popular target for hackers. About 95.62% hacked website in 2021 is WordPress based site. Therefore, to improve website security we conducted a vulnerability assessment on a WordPress based website, in order to identify vulnerabilities that may be exploited by hackers. To do the vulnerability assessment, we used the network-based scanner based to detect vulnerabilities on the WordPress website. Our results showed that the website had several vulnerabilities that needed to be addressed and fixed immediately. The conclusion of our research highlights the importance of conducting regular vulnerability assessments on WordPress-based websites to reduce the risk of vulnerabilities being exploited. By taking proactive measures to identify and fix vulnerabilities, website owners can better protect their sites from potential hacker attacks. It is crucial for website owners to be aware of the risks posed by security threats in the digital world and to take steps to mitigate these risks to protect their businesses and their customers.

Xiaoyu Jiang,Zhiqiang Ge

DOI: https://doi.org/10.1109/tai.2022.3145335

2022-01-01

IEEE Transactions on Artificial Intelligence

Abstract:With the rapid development of information technology, intelligent upgrading of the manufacturing industry has broken the closed environment of traditional industrial control systems (ICS); thus, the information security of ICS has been seriously threatened. As part of ICS, the process monitoring system (PMS) is heavily subject to external risks. Data-driven PMSs have been widely used as initial lines of defense to ensure ICS safety. Once the PMS is under attack, the consequences on the whole ICS will be unimaginable. Unfortunately, the safety issues of the PMS have received inadequate attention. This article reveals PMS’s vulnerabilities through effective attacks. A novel method called subspace transfer network (STN) is proposed to conduct adversarial and poisoning attacks on the PMS simultaneously. Then the attack task flow is defined and explained to make online adversarial attacks and data poisoning on PMS. Meanwhile, aiming at two poisoning goals, targeted and untargeted attacks of STN are designed, respectively. Finally, the PMS’s fragility is verified in two industrial benchmarks.

Dwi Ely Kurniawan,Mohd Iqbal,John Friadi,Fendi Hidayat,Ririt Dwiputri Permatasari

DOI: https://doi.org/10.1088/1742-6596/1783/1/012041

2021-02-01

Journal of Physics: Conference Series

Abstract:Abstract During the Covid-19 pandemic, almost all jobs and activities to be limited, relying on the internet network. Data security in an internet network is most important and needs to be a concern for internet users. The internet network is a public network, which is vulnerable to security attacks. Attacks may occur to retrieve user data in the form of a username and password. This study conducts system design to improve the security of the username and password data when logging into web applications. Login using One-Time Password (OTP) verification by implementing the AES algorithm and Blowfish to encrypt the verification code. The verification code uses an SMS gateway. Testing is done by looking at security performances and comparing the performance of the Blowfish and AES algorithm. The results of the design research show that OTP is running well where the AES algorithm performance has advantages in terms of encryption and decryption speed compared to the Blowfish algorithm with a difference of ± 0.015 milliseconds for encryption and ± 0.04 milliseconds for decryption.

English Else

V. Balatska,M. Shabatura

DOI: https://doi.org/10.32447/20784643.20.2019.01

2020-01-22

Bulletin of Lviv State University of Life Safety

Abstract:For today, computer networks are an integral part of our daily lives. As the analysis shows, the network is ex-tremely vulnerable, it can serve as a place of information leakage, changes of configuration of settings and modification of data by the attackers. There are many more threats, and the security of the network requires a great deal of attention to ensure the security of the network in order to maintain the confidentiality and integrity of the data. Organizations must regularly assess the vulnerability of the entire network to test the security level and strengthen the network. We use vulnerability scanners to find weaknesses, which are useful for detecting security vulnerabilities on a case-by-case basis and across the network as a whole. The purpose of the work is to explore the computer network for vulnerabilities using the Nessus Professional scanner. Research Methods – network scanning by Nessus Professional vulnerability scanner. The Nessus Professional vulnerability scanner from Tenable Network Security, which is freely available, was used for the research. The Nessus Professional scanner has been found to have better functionality and performance than other available scanners. The only downside to the scanner is its cost per year, as well as scanning a large number of hosts on the network at a time (over 100 hosts). After the scanner was successfully installed, carried out it was in-spected from the moment it was launched to the generation of host test reports. For the work, the Lviv State University of Life Safety network was tested. In the post-scan report, which is displayed in HTML format, you can see scan details for each host; the number and nature of vulnerabilities; the error correction dashboard. According to the results of testing, vulnerabilities of low, medium and high levels of hazards were identified, totaling 376. Vulnerabilities were ana-lyzed based on the obtained results, namely: a brief description and a way to solve the problem.

R. Gibranto Kawi,Suprihadi

DOI: https://doi.org/10.35870/ijsecs.v3i3.1788

2023-12-10

International Journal Software Engineering and Computer Science (IJSECS)

Abstract:The Information System Design for the Tenta Tour Application, hosted on a website, is a critical component of modern tourism services. This research employs the rigorous Black Box Testing methodology to comprehensively evaluate the application's functionality, disregarding its internal structure. The study focuses on identifying potential errors and areas for improvement to enhance the quality and reliability of the system in delivering travel services to users. Through systematic Black Box Testing, the research investigates the Tenta Tour Application Information System on the web platform, with a primary emphasis on functionality rather than delving into the intricacies of the internal system structure. Test data is meticulously analyzed to uncover potential errors and opportunities for enhancements, all aimed at elevating the reliability and quality of travel services. The research findings successfully meet established criteria by effectively identifying potential functional errors within the Tenta Tour Application Information System when deployed on a website. The application of the Black Box Testing methodology has proven instrumental in uncovering functional issues that can be proactively addressed. These discoveries constitute a substantial contribution to enhancing the reliability and overall quality of travel services accessible through the application. In conclusion, this research underscores the efficacy of the Black Box Testing method in assessing the Tenta Tour Application Information System hosted on a website. The test results have proficiently identified potential functional errors and provided invaluable insights to enhance the application's reliability. The implementation of improvements informed by these findings is anticipated to significantly raise the standard of travel services rendered through this platform.

Omer Tripp,Omri Weisman,Lotem Guy

DOI: https://doi.org/10.1145/2483760.2483776

2013-07-15

Abstract:Black-box security testing of web applications is a hard problem. The main complication lies in the black-box assumption: The testing tool has limited insight into the workings of server-side defenses. This has traditionally led commercial as well as research vulnerability scanners toward heuristic approaches, such as testing each input point (e.g. HTTP parameter) with a short, predefined list of effective test payloads to balance between coverage and performance. We take a fresh approach to the problem of security testing, casting it into a learning setting. In our approach, the testing algorithm has available a comprehensive database of test payloads, such that if the web application's defenses are broken, then with near certainty one of the candidate payloads is able to demonstrate the vulnerability. The question then becomes how to efficiently search through the payload space to find a good candidate. In our solution, the learning algorithm infers from a failed test---by analyzing the website's response---which other payloads are also likely to fail, thereby pruning substantial portions of the search space. We have realized our approach in XSS Analyzer, an industry-level cross-site scripting (XSS) scanner featuring 500,000,000 test payloads. Our evaluation on 15,552 benchmarks shows solid results: XSS Analyzer achieves >99% coverage relative to brute-force traversal over all payloads, while trying only 10 payloads on average per input point. XSS Analyzer also outperforms several competing algorithms, including a mature commercial algorithm---featured in IBM Security AppScan Standard V8.5---by a far margin. XSS Analyzer has recently been integrated into the latest version of AppScan (V8.6) instead of that algorithm.

Indah Daila Sari,Dedy Hariyadi,Rama Sahtyawan,Netania Indi Kusumaningtyas

DOI: https://doi.org/10.30989/teknomatika.v16i2.1250

2023-12-08

Abstract:Phishing is a sort of cybercrime that involves obtaining sensitive information through the use of email, SMS, or compromised websites. The effects of phishing are caused by factors in the Technology Threat Avoidance Theory. The single best way to stop phishing attacks is to increase awareness of the risk of them happening among users or end users (human firewall). To determine the next steps in raising user knowledge, it is necessary to measure cybersecurity awareness, particularly against phishing assaults. Identify a few significant cybersecurity awareness of FTTI University of Jenderal Achmad Yani students in Yogyakarta. The investigation in this case included a phishing test and also employed online observation using observers who were asked questions based on the Technology Threat Avoidance Theory (TTAT). Using the MANOVA analysis method, factors influencing cybersecurity awareness analysis is conducted. Based on the analysis and testing of phishing tests as well as online questionnaires from the sample population, it shows that the sample is at a poor level of awareness. While the analysis of cybersecurity influence factors using the MANOVA analysis method shows that the results of the sig.> 0.05 value so that h0 is rejected. Based on the results of the study, it was concluded that FTTI students were still vulnerable to phishing attacks. Factor analysis using the MANOVA method shows that the dependent factor affects the level of cybersecurity awareness of the respondents but there is no significant difference between the dependent factors.

Novi Aryani Fitri

DOI: https://doi.org/10.31763/iota.v4i3.805

2024-08-15

Abstract:This study explores network security within a simulated environment built using VirtualBox, focusing on comparing the HTTP and HTTPS protocols in protecting data from eavesdropping. The research follows the PPDIOO model (Prepare, Plan, Design, Implement, Operate, and Optimize), including system requirements mapping and the setup of a virtual network environment that supports VLAN and data security. Two main scenarios were tested: an authorized user securely accesses a server using HTTPS, and another where an attacker attempts to intercept communication between the client and server using HTTP. The results indicate that HTTPS effectively protects data from eavesdropping attempts by attackers, while HTTP leaves security vulnerabilities that can be exploited to steal sensitive information. This study underscores the importance of using secure protocols like HTTPS in VLAN-based networks to protect data from eavesdropping and other threats. Additionally, the research paves the way for developing further security measures in network management, such as firewalls, intrusion detection systems (IDS), and more advanced encryption.

Deni Prasetyo,Annisaa Utami,Tri Ginanjar Laksana

DOI: https://doi.org/10.20895/inista.v6i2.1214

2024-07-03

Journal of Informatics Information System Software Engineering and Applications (INISTA)

Abstract:SMP Negeri 3 Watukumpul is a junior high school located in Bongas Village, Watukumpul District, Pemalang Regency, Central Java. This school has implemented website-based technology as a medium for conveying information, but the website is no longer usable. The data obtained from the interview results indicate the need for an academic information system website as a medium for disseminating information and managing academic data digitally. Based on the existing problems, researchers will re-create a website-based Academic Information System for SMP Negeri 3 Watukumpul as a medium for delivering information and managing academic data. This research uses the Extreme Programming method, which is one of the development methodologies of Agile Software Development Methodologies. The Extreme Programming method has several stages: Planning, Design, Coding, and Testing. The system uses black box testing on student, admin, and teacher accounts. Blackbox testing on student accounts includes login, register, profile, news, wall magazine, course material, grades, contacts, and logout menus. Blackbox testing on teacher accounts consists of login menus, course materials, grades, and grade page details. Black box testing on admin accounts consists of login menus, school profiles, teachers and employees, news, wall magazines, extracurriculars, and lesson schedules. In testing this system, researchers use black box testing to test its functionality. The black box test from the student's account got a result of 100%, the black box test result from the teacher's account got 100%, and the black box test from the admin account was 98.57%. Thus, the average black box test result from the three users was 99.52%. With the existence of this school website, it is hoped that information dissemination activities and academic data management activities will become more effective and efficient.