Election Commission of X City is an institution that serves as the organizer of elections in the X City, which has a website as a medium in the delivery of information to the public and as a medium for the management and structuring of voter data in the domicile of X City. As a website that stores sensitive data, it is necessary to have risk management aimed at improving the security aspects of the website of Election Commission of X City. The Information System Security Assessment Framework (ISSAF) is a penetration testing standard used to test website resilience, with nine stages of attack testing which has several advantages over existing security controls against threats and security gaps, and serves as a bridge between technical and managerial views of penetration testing by applying the necessary controls on both aspects. Penetration testing is carried out to find security holes on the website, which can then be used for assessment on ISO 31000 risk management which includes the stages of risk identification, risk analysis, and risk evaluation. The main findings of this study are testing a combination of penetration testing using the ISSAF framework and ISO 31000 risk management to obtain the security risks posed by a website. Based on this research, obtained the results that there are 18 security gaps from penetration testing, which based on ISO 31000 risk management assessment there are two types of security risks with high level, eight risks of medium level security vulnerabilities, and eight risks of security vulnerability with low levels. Some recommendations are given to overcome the risk of gaps found on the website.
Lembaga X adalah lembaga pemilihan umum yang memiliki situs web sebagai media penyampaian informasi dan penataan data pemilih. Sebagai situs web yang menyimpan data sensitif, perlu dilakukan peningkatan keamanan untuk mencegah terjadinya serangan pihak luar. Metode yang dapat digunakan untuk menguji keamanan sistem adalah pengujian penetrasi. Framework ISSAF adalah standar pengujian penetrasi yang digunakan untuk menguji ketahanan situs web, yang memiliki beberapa keunggulan dibandingkan kontrol keamanan lainnya, dan berfungsi sebagai jembatan antara pandangan teknis dan manajerial. Tujuan penelitian ini adalah untuk mengetahui celah keamanan website Lembaga X dengan menggunakan metode penetration testing dengan Framework ISSAF. Framework ISSAF meliputi sembilan asesmen pengujian yang meliputi Information Gathering, Network Mapping, Vulnerability Identification, Penetration, Gaining Access and Privilege Escalation, Enumerating Further, Compromise Remote User/Sites, Maintaining Access, dan Covering Tracks. Hasil dari penelitian ini adalah diperoleh 18 celah keamanan yang terdapat pada website Lembaga X. Pemberian rekomendasi diberikan untuk meningkatkan keamanan website Lembaga X
Snort is one of open source IDS to detect intrusion or potentially malicious activity on network traffic. Snort will give alert for every detected intrusion and write the alerts in log. Log data in IDS Snort will help network administrator to analyze the vulnerability of network security system. Clustering algorithm such as FCM can be used to analyze the log data of IDS Snort. Implementation of the algorithm is based on Python 3 and aims to cluster alerts in log data into 4 risk categories, such as low, medium, high, and critical. The outcome of this analysis is to show cluster results of FCM and to visualize the types of attacks that IDS Snort has successfully detected. Evaluation process is done by using Modified Partition Coefficient (MPC) to determine the validity of FCM.
Peredaran darah merupakan suatu pelajaran penting yang harus diketahui oleh siswa siswi dalam pelajaran biologi. Banyak siswa yang kurang dalam pemahaman saat dijelaskan dengan buku atau alat peraga. Terbatasnya alat peraga dan ketertarikan para siswa untuk belajar mendominasi pemanfaatan alat elektronik sebagai bahan ajar. Teknologi yang semakin canggih dapat dimanfaatkan sebagai sarana belajar mengajar yang menarik. Penerapan teknologi augmented reality dalam pembelajaran peredaran darah menjadi salah satu solusi. Augmented reality video dinamis berbasis android dimanfaatkan untuk membantu minta siswa belajar lebih efektif. Video yang digunakan dapat diambil dari video yang sudah ada ataupun rancangan video animasi sendiri. Aplikasi dikembangkan dengan marker. Fitur yang ditampilkan pada aplikasi memiliki 4 scene, yaitu 3D Statis, Video Dinamis, About dan Exit. Fitur utama aplikasi adalah 3D Statis yang berisi informasi mengenai bentuk jantung dan Fitur Video Dinamis, dimana jika marker di scan akan memunculkan video penjelasan mengenai peredaran darah pada jantung. Hasil dari aplikasi ini yaitu berupa aplikasi yang dijalankan dalam perangkat mobile Android dan dapat memberikan informasi mengenai peredaran darah pada jantung. Kualitas aplikasi menurut penilaian dari responden adalah baik, dengan persentase grafis sebesar 64%, presentase rekayasa perangkat lunak 71% dan presentase entertainment application yaitu 81%. Kata kunci: peredaran darah, augmented reality, video dinamis, marker, Android
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
customersupport@researchsolutions.com
10624 S. Eastern Ave., Ste. A-614
Henderson, NV 89052, USA
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Copyright © 2024 scite LLC. All rights reserved.
Made with 💙 for researchers
Part of the Research Solutions Family.