Publication Search

Computers in one of the network companies at PT. Estrada uses the Fortinet operating system. The final result expected through this implementation is to comprehensively see the capabilities of the firewall on Fortinet in overcoming the problem of blocking social media applications and streaming platforms during working hours. Blocking the application in question is the ability to filter web processes such as Facebook, Instagram, YouTube, etc. In the tests carried out, web filtering was able to block applications on social media and streaming platforms, which proves that the performance of web filtering is quite good. In analyzing web filtering performance, use the office hour rule tool by carrying out the rule schedule in the Fortinet network and displaying all the information in detail. The final result obtained in the network application filtering simulation process using Fortinet is that every network sent cannot be entered (blocked) on both social media applications and streaming platforms.

The increasing integration of internet technology in educational institutions requires structured network governance to ensure that digital resources support academic activities effectively. Unrestricted access to online platforms often leads to non-academic usage such as online gaming and social media engagement during instructional hours, which may reduce learning concentration and degrade network performance. This research develops and evaluates a network access control simulation using a MikroTik RouterBoard RB951Ui-2HnD device. The system applies firewall filtering mechanisms, hotspot-based authentication, and bandwidth allocation strategies through Simple Queue configuration. Network segmentation is implemented to differentiate teacher and student access privileges. The study adopts a Research and Development (R&D) approach to design, configure, test, and evaluate the proposed system. Testing results indicate that the firewall configuration successfully restricts access to selected online games (Mobile Legends, Clash of Clans, Roblox) and social media platforms (YouTube, TikTok, Shopee, Instagram, Telegram). Furthermore, bandwidth management demonstrates effective traffic prioritization, ensuring more stable allocation for teacher accounts in accordance with configured maximum limits. The findings confirm that structured firewall and bandwidth policies can improve network discipline, enhance performance stability, and support a controlled digital learning environment in schools.

APIs (Application Programming Interfaces) have become a key component in the development of modern digital products and the transformation of cloud-based services. Its ability to provide structured access to data and enable cross-platform integration makes APIs at the core of the enterprise's digital architecture. However, the high level of API openness poses increasingly complex security challenges, including potential data exploitation, injection attacks, credential misuse, and exploitation of business logic loopholes. This article examines the strategic role of APIs in the digital ecosystem, analyzes the operational risks that arise from API exposure, and evaluates the effectiveness of basic defense mechanisms such as API Gateways and Web Application Firewalls (WAFs). The findings of the study show that while both solutions play an important role in controlling access, filtering, and mitigating attacks at the surface layer, they have not been able to provide comprehensive protection against modern API threats that are dynamic, distributed, and often exploit weaknesses at the application and business logic levels. Therefore, a more holistic, layered, and sustainable API security approach is needed, including anomalous behavior detection, API abuse protection, and real-time monitoring to maintain the integrity and reliability of digital services.  

The rapid development of digital technology has significantly influenced educational approaches, particularly in Islamic education for digital native generations. This study analyzes the concept of Islamic education in the digital era based on the book Tarbiyah fi Zaman al-Fitan by Sheikh Dr. Ali bin Yahya al-Haddadi and explores its influence on digital native generations. Using a qualitative approach with library research methodology, this study conducts an in-depth analysis of the primary source supplemented by relevant secondary literature including books, scientific journals, and previous research findings. The research integrates Digital Native theory, Social Cognitive theory, and Connectivism to understand the educational challenges faced by digital natives. The findings reveal four main pillars of Islamic education according to al-Haddadi: parental education, gradual education from early age (tarbiyah tadrijiyyah), creed education (aqidah), and social etiquette education (adab). These pillars effectively serve as protective measures against two main fitnah (trials) in the digital era: syahwat (lust) and syubhat (doctrinal confusion). The study demonstrates that classical Islamic educational concepts remain highly relevant for addressing contemporary digital challenges, providing internal firewall mechanisms, strengthening parental role modeling, and promoting adaptive collaborative learning. This research contributes to the development of Islamic educational frameworks that integrate classical spiritual values with modern digital literacy requirements.

In the era of information technology advancement, web applications have become a means of seeking information. However, with technological progress, they have become increasingly vulnerable to cyber attacks such as SQL Injection and Cross-Site Scripting (XSS). This research aims to implement the Teler-waf Web Application Firewall (WAF) to protect web applications from such attacks. The research methodology includes the implementation of the Teler-waf WAF, analysis of web application security, and testing the speed of attack detection. The results show that Teler-waf is effective in preventing attacks, and its integration with Telegram bots provides real-time notifications to system administrators, enhancing security responsiveness. This research contributes to strengthening web application security and understanding the role of the Teler-waf WAF in addressing cyber threats.

Salah satu bentuk dari pemanfaatan kemajuan teknologi berupa penerapan aplikasi web menggunakan web server untuk berbagi informasi, memberikan layanan, dan menyimpan data. Dibalik kemudahan dalam penggunaan aplikasi web yang dapat diakses darimana pun, terdapat risiko ancaman keamanan siber yang cukup besar dimana aplikasi web dapat menjadi target serangan oleh penjahat siber yang ingin mencuri informasi sensitif atau mengambil alih sistem. Masalah keamanan tersebut dapat diatasi dengan pendekatan reaktif yaitu penerapan sistem keamanan yang mampu mendeteksi dan menganalisa insiden keamanan pada aplikasi web secara cepat dan efektif. Salah satu solusi yang dapat digunakan adalah dengan mengimplementasikan Security Information and Event Management (SIEM). SIEM adalah sistem yang dapat digunakan untuk mengelola log yang dihasilkan dari berbagai sumber data seperti endpoint, perangkat jaringan, maupun firewall, Salah satu aplikasi SIEM yang bersifat open source dan dapat digunakan untuk deteksi serta analisa insiden serangan siber adalah Wazuh. Wazuh adalah perangkat lunak open source yang berfungsi sebagai sistem deteksi berbasis host (endpoint) yang menyatukan kemampuan XDR (External Data Representation). Metode yang digunakan dalam penyelesaian masalah tersebut menggunakan metode Eksperimental, ada 5 tahapan dalam metode eksperimental ini yaitu analisis kebutuhan, desain, implementasi, pengujian, evaluasi. Hasil dari pengujian tersebut dapat di deteksi oleh Wazuh sebagai SIEM untuk memonitoring keamanan server dan deteksi penyerangan.

The Windows operating system has become one of the main targets for cyber attackers because of its popularity among computer users. Therefore, developing an effective integrated security system is essential to protect the Windows operating system from various cyber threats. This journal discusses integrated security system development strategies that include the use of encryption technology, firewalls, malware scanning, system updates, and user awareness. Apart from that, this journal also discusses the implementation of an integrated security strategy to protect the Windows operating system from increasingly complex cyber attacks. The goal of this journal is to provide strategic guidance for IT security professionals and researchers in developing an effective integrated security system to protect the Windows operating system from ever-evolving cyber threats.

Building a computer network needs significant care in selecting a configuration to ensure its efficacy and efficiency. It involves decisions about network topology, types, and device use. Security measures are essential for protecting networks with internet access from external attacks. A study conducted at an Islamic university in Indonesia indicated the use of a star network architecture and a client-server network model. The servers utilize Debian Linux. The university's security infrastructure includes a server authentication system and the setting up of a Virtual Private Network (VPN). If the server authentication difficulty is caused by a power outage, it is recommended that you use an UPS (uninterruptible power supply) to preserve power stability. Overall, security methods show up to be more effective when firewalls are installed.

Internet connections that are not always stable and data security is not maintained from various threats from outside attacks in the form of hackers, crackers, viruses, and so on are the main problems for every client. Using the pfSense analysis method, this study aims to address the above bandwidth management and network security issues. The pfSense analysis that the researchers carried out included an analysis of total bandwidth usage, data security, and information for each client on the P3DW Internet network (Center for Regional Revenue Management) Bandung III Soekarno-Hatta City. The results of the analysis concluded that pfSense can work as a firewall that functions as a bandwidth limiter and network security. The level of client satisfaction increases with the infrastructure designs being tested. With a web GUI that makes it easy for users to configure, the basic system used is FreeBSD which is open-source, making pfSense able to be an alternative choice for building a firewall that is reliable, flexible, and economical.

Information security and asset protection have become top priorities in the banking industry today. Bank JABAR (Jawa Barat), as one of the leading banks in the region, also recognizes the importance of effective security management. The objective of this research is to examine the implementation of vital objects, file security, and cyber security at Bank JABAR. This research uses a descriptive analysis method by studying the policies and practices implemented by Bank JABAR in information security. Data collection techniques include documentation study and interviews that cover security policies, guidelines, and procedures at Bank JABAR.  The results of this research indicate that Bank JABAR has implemented vital objects by identifying critical assets or information and giving them appropriate protection priority. File security is implemented through strict access policies, data encryption, regular data backup and recovery, as well as secure data disposal. Cyber security is carried out through firewall policies, intrusion detection systems, continuous network monitoring, and regular system security updates. In conclusion, Bank JABAR has taken important steps in the implementation of vital objects, file security, and cyber security. However, there is a need for ongoing efforts to enhance security awareness, involve more intensive training, and adopt a proactive approach to information security.

Keamanan jaringan menjadi suatu hal yang sangat penting, terutama untuk sebuah organisasi yang menerapkan teknologi dan sistem informasi di dalamnya. Fakultas Seperti halnya yang terjadi di Fakultas Teknologi Informasi Universitas Kristen Satya Wacana (FTI UKSW). Saat ini FTI UKSW menggunakan topologi jaringan dengan perangkat MikroTik. Penelitian ini merekomendasikan perancangan desain topologi berbasis Hierarchical Network Design dan dirancang dengan menggunakan pfSense Router Firewall. Perancangan sistem difokuskan untuk bagian traffic antara Distribution Layer dan Access Layer. Hal tersebut dilakukan untuk mengamankan traffic jaringan dan memberikan proteksi secara langsung melalui Web Service pfSense. Di dalam pfSense Router Firewall, terdapat tools yaitu Intrusion Prevention System (IPS) Snort yang berfungsi untuk membantu dalam memberikan action dan blocking jika terjadi ancaman pada jaringan. Dengan desain topologi yang diusulkan tersebut diharapkan dapat menghasilkan peningkatan keamanan jaringan komputer di FTI UKSW.

Jl Karanglo RW 03 Pedurungan Semarang is a densely populated environment, its people are very hungry for fast and accurate information. The internet is available which is relatively expensive as the main choice in finding the information needed. However, the cost is very expensive for a connection that must be paid every month. Although currently many CDMA and GSM modems available on the market are not enough to meet the need for speed of an internet connection. Although there are internet cafes established, they have not streamlined the cost and time of internet users in the area. The purpose of this study is to save the cost of bandwidth rental per month for unlimited connections, provide a stable internet connection that can be used for 24 hours straight, provide data transfer with bandwidth management, so as to better guarantee the quality of the internet connection. The system development method used is Prototyping which stages include identifying user needs, making a prototype, agreeing to the user, using a prototype. As a server, using Mikrotik Os where in Mikrotik Os there are several important and interesting features provided by Mikrotik itself, among those features are bandwidth management, firewall, DNS client chacing, and many other features provided by Mikrotik. With this Mikrotik provides stability of internet data transfer in accordance with the management of Mikrotik Os as a server. The client uses a Windows-based operating system, this is because the driver tool used is more compatible using a Windows operating system than using a Linux-based operating system, because it has to compile the driver.