Metode Vulnerability Assesment Dalam Pengujian Kinerja Sistem Keamanan Website Points of Sales

Wahyudin Wahyudin; Heri Kuswara; Resti Resti; Sopiyan Dalis

doi:10.31294/coscience.v4i1.2978

Authors

Wahyudin Wahyudin Universitas Bina Sarana Informatika
Heri Kuswara Universitas Bina Sarana Informatika
Resti Resti Universitas Bina Sarana Informatika
Sopiyan Dalis Universitas Bina Sarana Informatika

DOI:

https://doi.org/10.31294/coscience.v4i1.2978

Keywords:

Website Security, Vulnerability Assesment, Website

Abstract

The development of electronic commerce through point of sales based websites is closely related to the growth rate of the internet, because electronic commerce runs through networks and Internet connections. However, the more point of sale based websites that are built, the greater the possibility of cyber attacks that could harm the website. Therefore, website security is very important to pay attention to. One method that can be used to maintain website security is to carry out a Vulnerability Assessment. Vulnerability Assessment is a process of searching for security gaps in an information system or computer network with the aim of identifying potential security vulnerabilities and taking preventative steps before an attack occurs. The vulnerability assessment technique used is using a weakness scanner application to identify security gaps in systems and applications such as Nikto, Nmap, Zenmap and Owasp ZAP. Based on testing with the Owasp ZAP tool, the results of scanning carried out on the sakupos.com website, which is a points of sales based website, show that there is a vulnerability on the website. The test results show the Level of Vulnerability (Risk Assessment) as well as recommended solutions that can be used to prevent it. There were 10 vulnerabilities detected, 7 vulnerabilities were found with a Medium risk level, 2 vulnerabilities with a Low risk level, and 1 other vulnerabilities at the Informational risk level.

References

Budiman, A., Ahdan, S., & Aziz, M. (2021). Analisis Celah Keamanan Aplikasi Web E-Learning Universitas Abc Dengan Vulnerability Assesment. Jurnal Komputasi, 9(2), 1–10.

Darojat, E. Z., Sediyono, E., & Sembiring, I. (2022). Vulnerability Assessment Website E-Government dengan NIST SP 800-115 dan OWASP Menggunakan Web Vulnerability Scanner. Jurnal Sistem Informasi Bisnis, 12(1), 36–44. https://doi.org/10.21456/vol12iss1pp36-44

Fahlevi, M. R., & Putri, D. R. D. (2021). Analisis Monitoring & Kinerja Sistem Keamanan Jaringan Komputer Menggunakan Nmap (Studi Kasus: Raz Hotel & Convention Medan). It (Informatic Technique) Journal, 9(1), 35. https://doi.org/10.22303/it.9.1.2021.35-43

Irawadi Alwi, E., & Budi Ilmawan, L. (2021). Analisis Keamanan Sistem Informasi Akademik (SIAKAD) Universitas XYZ Menggunakan Metode Vulnerability Assessment. Informatics Journal, 6(3), 131–135.

jajang ruhiyat, angga setiyadi. (2016). Sistem Monitoring Website Dengan Metode ISSAF Di dinas Komunikasi Dan Informatika Kabupaten Tanggerang. Univeritas Komputer Indonesia.

Kusbandono, D., & Rosyad, S. (2019). Upaya Pengembangan Usaha Kecil Dan Menengah (Ukm) Dengan Memanfaatkan E-Commerce Untuk Meningkatkan Minat Pembelian Konsumen Terhadap Penjualan Bibit Ikan Di Desa Plosobuden Kec. Deket. E-Prosiding SNasTekS, 1(1), 381–390.

Mira Orisa and M. Ardita. (2021). Vulnerability Assesment Untuk Meningkatkan Kualitas Kemanan Web. Jurnal Mnemonic, 4(1), 16–19.

Raazi Irfan Murti, Dwitawati Ima, & Putri, N. (2023). Uji Vulnerability Assessment Dalam Mengetahui Tingkat Keamanan Web Aplikasi Sistem Informasi Laporan Diskominfo Dan Sandi Aceh. JINTECH: Journal Of Information Technology, 4(1), 1–15.

S. Ghobadi. (2020). Sejarah dan Perkembangan Internet Di Indonesia. Jurnal Mitra Manajemen, 5, 68–71.

Wibowo, F., Harjono, H., & Wicaksono, A. P. (2019). Uji Vulnerability pada Website Jurnal Ilmiah Universitas Muhammadiyah Purwokerto Menggunakan OpenVAS dan Acunetix WVS. Jurnal Informatika, 6(2), 212–217. https://doi.org/10.31311/ji.v6i2.5925