Analisis Keamanan pada Aplikasi Her-registrasi Online Mahasiswa Universitas Diponegoro

Hilal Afrih Juhad; R. Rizal Isnanto; Eko Didik Widianto

doi:10.14710/jtsiskom.4.3.2016.479-484

DOI: https://doi.org/10.14710/jtsiskom.4.3.2016.479-484

Analisis Keamanan pada Aplikasi Her-registrasi Online Mahasiswa Universitas Diponegoro

Hilal Afrih Juhad , R. Rizal Isnanto, Eko Didik Widianto

Program Studi Sistem Komputer, Universitas Diponegoro, Indonesia

Received: 22 Jul 2016; Published: 21 Aug 2016.

Citation Format:

Abstract

The security aspect is often forgotten in the application of Information Technology. The attacks were caused by the negligence of the developer causes damage to the system used. SQL Injection attacks, Cross Site Scripting attacks, and no use of encrypted channels lead to the exposure of sensitive data users. Objectives of this research is to perform an audit and analysis of the security aspects against the Her-registration Colege Students Online Application of Diponegoro University. Audit and security analysis is prevention step so that the vulnerabilities found not to be a entrances to the system hackers. The results of this research are a security audit report that contains the vulnerability Her-registration College Students Online Application of Diponegoro University. The audit report will be used as a reference for application developers Her-registration Colege Students Online Application of Diponegoro University to improve the system.

Note: This article has supplementary file(s).

Fulltext View|Download | Research Results

Analisis Keamanan pada Aplikasi Her-registrasi Online Mahasiswa Universitas Diponegoro

Subject	security; web application; sql injection; xss; acunetix;
Type	Research Results
	Download (110KB) Indexing metadata

Email colleagues

Keywords: security; web application; sql injection; xss; acunetix;

Article Metrics:

Article Info

Section: Original Research Articles

Language : ID

In Volume 4, Nomor 3, Tahun 2016 (Agustus 2016)

Attitude stabilization control for quadrotor using self-tuning fuzzy-PD Android Application for Tasikmalaya City Tourism Guidance A galvanic-based dissolved oxygen level monitoring sensor system in freshwater ponds AKSALont: Automatic transliteration application for Balinese palm leaf manuscripts with LSTM Model More related articles

Most cited articles

Implementasi Algoritma Kriptografi RSA untuk Enkripsi dan Dekripsi Email Aplikasi Pengolahan Citra Digital Meat Detection Dengan Metode Segmentasi K-Mean Clustering Berbasis OpenCV Dan Eclipse Parameter tuning in KNN for software defect prediction: an empirical analysis Comparative study of four indoor empirical propagation models for campus wireless network Multi Layer Perceptron Model for Indoor Positioning System Based on Wi-Fi More cited articles

Acunetix, "Acunetix Web Vulnerability Scanner," 2005
M. Syafrizal, "ISO 17799: Standar Sistem Manajemen Keamanan Informasi"
FIRST, Common Vulnerability Scoring System v3.0: User Guide, 2014
A. Singh, Metasploit Penetration Testing Cookbook, Birmingham: Packt Publishinf, 2012
B. Rahardjo, “Keamanan Sistem Informasi Berbasis Internet,” PT Insan Komunikasi Indonesia, Bandung, 2002
ISO, "Information technology -- Security techniques -- Information security management systems -- Requirements," ISO Organization, 2005
---, Registrasi Online Mahasiswa, http://reg- online.undip.ac.id/index.php, 19 Oktober 2015
---, Penetration Testing Overview, http://www.coresecurity.com/penetration-testing- overview, 28 Oktober 2015
---, Mitre. About CWE, http://cwe.mitre.org/about/index.html, 2 Februari 2016
---, Mitre. Common Vulnerability and Exposures, https://cve.mitre.org/about/index.html, 8 Februari 2016

Last update:

Evaluation and Recommendations for Improvements to the Security and Speed of the ITS RFID Gate System
Hatma Suryotrisongko, Ridho Rahman Hariadi, Muh Reza Aisyi, Khakim Ghozali, Rizka Wakhidatus Sholikah. 2023 International Seminar on Intelligent Technology and Its Applications (ISITIA), 2023. doi: 10.1109/ISITIA59021.2023.10220973

Last update: 2024-11-19 22:23:26

No citation recorded.

Starting from 2021, the author(s) whose article is published in the JTSiskom journal attain the copyright for their article and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. By submitting the manuscript to JTSiskom, the author(s) agree with this policy. No special document approval is required.

The author(s) guarantee that:

their article is original, written by the mentioned author(s),
has never been published before,
does not contain statements that violate the law, and
does not violate the rights of others, is subject to copyright held exclusively by the author(s), is free from the rights of third parties, and the necessary written permission to quote from other sources has been obtained by the author(s).

The author(s) retain all rights to the published work, such as (but not limited to) the following rights:

Copyright and other proprietary rights related to the article, such as patents,
The right to use the substance of the article in its own future works, including lectures and books,
The right to reproduce the article for its own purposes,
The right to archive all versions of the article in any repository, and
The right to enter into separate additional contractual arrangements for the non-exclusive distribution of published versions of the article (for example, posting them to institutional repositories or publishing them in a book), acknowledging its initial publication in this journal (Jurnal Teknologi dan Sistem Komputer).

Suppose the article was prepared jointly by more than one author. Each author submitting the manuscript warrants that all co-authors have given their permission to agree to copyright and license notices (agreements) on their behalf and notify co-authors of the terms of this policy. JTSiskom will not be held responsible for anything arising because of the writer's internal dispute. JTSiskom will only communicate with correspondence authors.

Authors should also understand that their articles (and any additional files, including data sets and analysis/computation data) will become publicly available once published. The license of published articles (and additional data) will be governed by a Creative Commons Attribution-ShareAlike 4.0 International License. JTSiskom allows users to copy, distribute, display and perform work under license. Users need to attribute the author(s) and JTSiskom to distribute works in journals and other publication media. Unless otherwise stated, the author(s) is a public entity as soon as the article is published.

Analisis Keamanan pada Aplikasi Her-registrasi Online Mahasiswa Universitas Diponegoro

EDITORIAL OFFICE OF JURNAL TEKNOLOGI DAN SISTEM KOMPUTER