Hidayah, Rifki Rahmatun (2024) Simulasi Penetration Testing Pada Sistem Pembelajaran Daring (SPaDa) Fakultas Teknik Universitas Islam Riau Dengan Metode Owasp dan Ptes. Other thesis, Universitas Islam Riau.
Text
203510575.pdf - Submitted Version Restricted to Repository staff only Download (2MB) | Request a copy |
Abstract
In today's internet era, information is easily accessible and disseminated. As a result, information becomes a highly valuable asset for individuals, governments, and private sectors alike. Information security aims to achieve confidentiality, availability, and integrity across all of an organization's information resources, not just hardware and data. Information system security encompasses daily protection, known as information security, and operational preparations (Shinta Nurul, et al., 2022). A website is one of the most widely used platforms for providing information using a hyperlink concept, making it easier for internet users. Websites can highlight content presented in a document and link it to other media. A website can connect various locations within a document or image to different locations in other documents. Using a browser, links can be navigated to their destinations by simply clicking them (Susilo, Kurniati, & Kasmawi, 2018). Vulnerabilities in web security are often exploited by irresponsible parties seeking to gain profit. These exploits may come in the form of attacks aimed at obtaining confidential data, causing financial losses, damaging the reputation of targeted organizations, or simply attempting to disrupt the structure of the targeted website. This issue remains a prevalent topic as information technology continues to evolve. Websites are the most commonly used choice across various sectors, such as in the field of education. An example is the web-based application used by the Faculty of Engineering at the Islamic University of Riau, known as: https://app.eng.uir.ac.id/spada/. SPADA contains several pieces of personal information from both lecturers and students that need to be secured, as well as information regarding courses that could lead to academic dishonesty. Given this, it is essential to test the application and its infrastructure. One solution that can be used is the PTES (Penetration Testing Execution Standard) and OWASP (Open Web Application Security Project) methods. PTES and OWASP are two frameworks that help in conducting effective penetration tests and provide accurate information in delivering the best solutions.
Item Type: | Thesis (Other) | ||||||
---|---|---|---|---|---|---|---|
Contributors: |
|
||||||
Subjects: | Q Science > QA Mathematics > QA76 Computer software | ||||||
Divisions: | > Teknik Informatika | ||||||
Depositing User: | Mia | ||||||
Date Deposited: | 24 Sep 2024 08:47 | ||||||
Last Modified: | 24 Sep 2024 08:47 | ||||||
URI: | http://repository.uir.ac.id/id/eprint/23881 |
Actions (login required)
View Item |