DSpace JSPUI
DSpace preserves and enables easy and open access to all types of digital content including text, images, moving images, mpegs and data sets
Learn More
Please use this identifier to cite or link to this item:
http://repository.ipb.ac.id/handle/123456789/157156| Title: | Penetration Testing Sistem Informasi Pelaporan dan Konsultasi pada Website XYZ Menggunakan Standar NIST 800-115 |
| Other Titles: | Penetration Testing of the Reporting and Consultation Information System on the XYZ Website Using NIST 800-115 Standard |
| Authors: | Aziezah, Nur YUSTISYIA, M.LUTFI |
| Issue Date: | 2024 |
| Publisher: | IPB University |
| Abstract: | Kemajuan teknologi telah menjadi bagian tak terpisahkan dalam kehidupan masyarakat, yang bergerak sejalan dengan perkembangan ilmu pengetahuan. Inovasi teknologi membawa manfaat positif dan kemudahan dalam berbagai aspek kehidupan, seperti akses mudah terhadap informasi melalui internet. Dengan adanya internet masyarakat dapat dengan mudah untuk mencari informasi. Informasi biasanya tersedia dalam website, namun kemudahan tersebut juga dapat menjadi sebuah ancaman untuk tersebarnya data pribadi. Tujuan penulisan ini adalah melakukan pengujian penetrasi untuk website XYZ dan menghasilkan rekomendasi dengan standar NIST 800-115. Metode pengujian yaitu pendekatan blackbox dan greybox. Metode ini dinilai relevan untuk diterapkan karena penguji merupakan pihak luar dari perusahaan. Adapun hasil dari pengujian yang dilakukan website XYZ memiliki kerentan level rendah dan sedang. Hal tersebut tentunya membantu perusahaan untuk melakukan pencegahan atas kebocoran data. Technological advancement has become an integral part of people's lives, moving in tandem with the development of scientific knowledge. Technological innovations bring positive benefits and conveniences in various aspects of life, such as easy access to information through the internet. With the internet, people can easily search for information, which is usually available on websites. However, this convenience can also pose a threat to the spread of personal data. The purpose of this writing is to conduct penetration testing to test the XYZ website and produce recommendations according to the NIST 800-115 standard. The penetration testing used are the blackbox and greybox approaches. These methods are considered relevant because the tester is an external party to the company. The results of the testing showed that the XYZ website has low and medium-level vulnerabilities. This helps the company take preventive measures against data breaches. |
| URI: | http://repository.ipb.ac.id/handle/123456789/157156 |
| Appears in Collections: | UT - Software Engineering Technology |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| cover_J0303201044_ed7f3e1c502240d588bf6107e191a334.pdf | Cover | 503.14 kB | Adobe PDF | View/Open |
| fulltext_J0303201044_99591ff0d6a7421494399825dfd511e3.pdf Restricted Access | Fulltext | 1.77 MB | Adobe PDF | View/Open |
| lampiran_J0303201044_ed995d8be1294f3ca4cad0d57243cede.pdf Restricted Access | Lampiran | 654.62 kB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.