Publication Search

The exponential growth of the Internet of Things (IoT) introduces a multitude of security challenges, as a vast number of connected devices often operate with inadequate protection measures. This vulnerability heightens the risk of cyberattacks, data breaches, and hacking, exposing systems and sensitive information to increased threats. Ensuring security in the IoT ecosystem while considering this rapidly expanding technology's physical limitations and specific requirements is a complex task. This article comprehensively analyzes the primary vulnerabilities and risks associated with IoT, exploring innovative strategies and effective solutions to strengthen its security framework. The article highlights the critical role of secure device authentication, data encryption, regular updates, and continuous monitoring by addressing the intricacies of communication protocols and emphasizing the need for standardization. Ultimately, this work advocates for a holistic approach to IoT security, where robust, adaptable solutions are developed to safeguard against the evolving landscape of cyber threats.

Software testing is a critical phase in information system development to ensure the system's quality and reliability. This study aims to evaluate the reliability and functionality of PT Perta Sakti Abadi's financial information system using the black-box testing method with the Equivalence Partitioning (EP) technique. This technique allows input data to be grouped into valid and invalid categories, minimizing test cases without reducing testing coverage. The testing focuses on the login feature as the system's primary component by evaluating various input combinations. The testing scenarios include boundary conditions to ensure the system handles inputs correctly in various situations.The results indicate that the system successfully verifies valid credentials, rejects access with invalid data, and provides informative error messages. Additionally, the system demonstrates resilience in handling testing scenarios, including inputs with special characters and empty fields. Input validation mechanisms function optimally, supporting secure user access and ensuring the login feature aligns with functional specifications. This successful testing forms a strong foundation for testing other modules, such as multi-level authentication and data encryption. Thus, the Equivalence Partitioning technique within the black-box testing method proves effective in enhancing the quality of web-based financial information systems.

Security of electronic medical records (EMR) data is very important in maintaining the confidentiality, integrity, and availability of sensitive patient information. This study aims to conduct a security analysis of the EMR application used at UPTD RSD Besemah Pagar Alam City using the Penetration Testing method. This method is carried out to identify, exploit, and provide solutions to potential vulnerabilities in the EMR application system. Penetration Testing is carried out through several stages, namely information collection, scanning, exploitation, and post-exploitation, using tools such as Nmap, and OWASP ZAP. The results of the study showed several vulnerabilities in the application, including SQL Injection, Cross-Site Scripting (XSS), and weaknesses in authentication management that could allow unauthorized access to patient data. In addition, exposure to sensitive data that was not properly protected was also found. Based on the results of this test, several recommendations were made to improve system security, such as updating security patches, implementing encryption on all sensitive data. By implementing the recommended mitigation steps, the security of the EMR system at UPTD RSD Besemah is expected to be significantly improved, so that the risk of data leakage can be minimized. This research provides a real contribution in strengthening the security of electronic medical record applications. and is expected to be a reference in improving security systems in other health care institutions.    

In the current digital era, cybersecurity of data and information systems. The threat of  attacks, or , is a form of threat that continues to grow along with advances in technology. This research aims to learn about cybersecurity strategies in dealing with . The method used in this research is a literature review. This journal was prepared based on an analysis of research results from various journals accessed through secondary data sources, namely the Google Scholar database, and e-resources from Springer, Cambridge, and Taylor and Francis. The research results show that implementing technology such as encryption, multifactor authentication, and user training, are some of the effective steps that have been proven to reduce risk. However, challenges in implementing this strategy remain, both from a technical and non-technical perspective, which require special attention from researchers and practitioners in the field of cyber security.

Along with the development of the times, the use of information technology using computers as its media has increased rapidly. Indonesia is currently starting to adopt the concept of society 5.0 or what is known as Society 5.0, where this kind of activity focuses on community settings that are oriented towards IT-based human activities (Wijayanti et al., 2022). The application of the concept of "society 5.0" has brought many technological advances in various fields of life that are connected to the internet, especially in Indonesia. The base64 technique produces values ​​during text encoding that are difficult for laypeople to understand. This encryption program has the ability to convert plain text to cipher text and reverse cipher text after it is received. Several recommendations for the development of better applications in further research can be made based on the test findings of this study and the conclusions mentioned above. These include the following: The Vigenere Chipper application can only encrypt text messages    

The development of quantum computing presents new challenges to the security of data stored and processed by today's computer systems. Quantum computers have the ability to perform calculations at very high speeds, which could threaten the security of currently used encryption algorithms. Therefore, steps are needed to design and implement an operating system that is able to protect data from quantum computing threats. Ubuntu Linux version 22.04, as one of the leading open source Linux distributions, offers high-level security features. To face the era of quantum computing, it is necessary to carry out special development and implementation of this operating system. This research aims to improve the security of the Ubuntu Linux operating system version 22.04 so that it can withstand quantum computing attacks by designing and implementing a quantum-resistant cryptography protocol and testing the security and performance of the resulting system. This research method uses a qualitative approach and research and development (R&D) with literature studies. The research results show that the integration between Liboqs and OpenSSL on Linux Ubuntu 22.04 successfully implements a cryptographic algorithm that is resistant to quantum computing. Although there is a slight performance increase due to the additional overhead of the quantum algorithm, the security of the system in protecting data from quantum computing attacks is proven to be well maintained.    

In the digital era, mobile operating systems (OS) play a pivotal role beyond mere application execution platforms. They are essential for optimizing energy efficiency and enhancing security, particularly in the realm of mobile banking. This paper explores the critical role of mobile OS in supporting sustainable economic growth through efficient energy use and robust security measures in mobile banking transactions. The focus is on how these OS advancements contribute to a secure and environmentally responsible digital economy. Key aspects covered include energy optimization strategies, security enhancements such as data encryption and multi-factor authentication, and the integration of these technologies into mobile banking applications. By addressing these challenges, mobile OS not only ensures sustainable economic development but also fosters financial inclusivity and security in an increasingly digital world.    

The Windows operating system has become one of the main targets for cyber attackers because of its popularity among computer users. Therefore, developing an effective integrated security system is essential to protect the Windows operating system from various cyber threats. This journal discusses integrated security system development strategies that include the use of encryption technology, firewalls, malware scanning, system updates, and user awareness. Apart from that, this journal also discusses the implementation of an integrated security strategy to protect the Windows operating system from increasingly complex cyber attacks. The goal of this journal is to provide strategic guidance for IT security professionals and researchers in developing an effective integrated security system to protect the Windows operating system from ever-evolving cyber threats.

The information systems currently used by PT Media Print need to be evaluated to ensure that they remain relevant, efficient and secure. In the competitive print media industry, it is important for companies to ensure that their information systems support business processes well and provide high-quality service to customers. This audit aims to ensure that the information system functions properly, protects sensitive information, and meets organizational goals. By using an information system audit, it is hoped that it can help identify areas where improvements or improvements are needed to improve service quality and control existing security in information systems, including access management, data encryption, user activity monitoring, and data protection measures. From the research carried out, the final result was obtained, namely DSS03 (Manage Service Requests and Incidents) showing the overall level of capability in the DSS03 sub-process and the average results for the DSS03 IT Process itself are shown in table 3 process capability domain DSS03 manage operations.

This research focuses on the design and implementation of the Caesar Cipher method to improve the security of an Android-based School Academic Information System. In this digital era, data security is a major concern, especially in school academic information systems that manage important data. The Caesar Cipher method, as a simple and easy to implement encryption technique, is used in this research. The research results show that the implementation of Caesar Cipher has succeeded in increasing data security in the system. While this method does not provide a very high level of security, it can be part of a more complex security approach. Overall, this research shows that the design and implementation of Caesar Cipher is an effective step in improving the security of Android-based school academic information systems.

In the rapidly advancing digital era, information security has become a crucial aspect in maintaining the confidentiality, integrity, and authenticity of data. This article discusses the relationship between information system auditing and the use of modern cryptographic combinations in securing text messages. Information system auditing serves as an evaluation mechanism to ensure that security policies, procedures, and standards are correctly and consistently applied. On the other hand, modern cryptography provides advanced encryption technology that protects text messages from unauthorized access and manipulation. By combining these two approaches, we can create a robust framework for securing text messages, ensuring that data remains safe and protected during transmission and storage. Research results indicate that integrating information system auditing with modern cryptographic techniques significantly enhances the security and reliability of information systems.      

Cloud-based systems are increasingly vulnerable to a range of cybersecurity threats, driving the need for advanced encryption methods. This paper investigates the potential of quantum cryptography in securing cloud environments, focusing on the use of quantum key distribution (QKD) protocols. By leveraging the principles of quantum mechanics, the study demonstrates significant improvements in data security, offering enhanced protection against eavesdropping and paving the way for more resilient cloud security frameworks.

The advancement of digital technology has brought about significant progress across various sectors, while simultaneously introducing new risks, particularly in the realm of cybersecurity. Cybersecurity has become a critical concern for companies, including energy giants like Pertamina. In the context of Indonesia, adherence to cybersecurity within Pertamina must align with relevant legal frameworks, such as the 1945 Constitution (UUD 1945). This research aims to explore optimal approaches to implementing cybersecurity within Pertamina, with a focus on the legal underpinnings of the 1945 Constitution. Key attention is directed towards Article 27, paragraph (3) of the Constitution, which guarantees universal access to education, including information security training for employees—a crucial element in thwarting cyber threats. Furthermore, Article 28, paragraph (1) of the 1945 Constitution, safeguarding freedom of association, can be interpreted to endorse collaboration between Pertamina and external entities, like cybersecurity institutions and regulatory bodies, to bolster cyber defense capabilities. Integration of cutting-edge security technology is paramount, aligning with the principles outlined in Article 33, paragraph (2) of the 1945 Constitution, emphasizing the preservation of natural resources. This extends to safeguarding Pertamina's data and digital infrastructure through measures like encryption technology, robust network security protocols, and effective intrusion detection systems. By heeding the legal foundations provided by the 1945 Constitution, the implementation of cybersecurity at Pertamina must be comprehensive, encompassing employee education, technological upgrades, and collaborative efforts with external stakeholders. Such measures aim to mitigate cyber risks, safeguard operational interests, and shield sensitive information from evolving threats in today's digital landscape. Additionally, Law Number 11 of 2008 plays a crucial role in governing information technology and electronic transactions in Indonesia. This legislation grants legal validity to electronic documents, signatures, and transactions, while also ensuring information security and user privacy. It imposes criminal penalties for illicit activities in the realm of information technology, fostering a secure environment for electronic transactions and upholding user rights in the digital age.

This Space Security System is a system that utilizes the existing Internet Network to monitor a room remotely or from a different location. With the aim of making it easier to limit employee access rights and monitor the presence of people in the room.So the author made a room security system tool using the Internet of Things (IOT) which was implemented at the Demak Regency Communication and Information Service. The way this system works is only employees who have access rights who can enter the room by attaching an RFID card to the RFID Reader sensor, and the way the PIR sensor works is to monitor human presence, when there is infrared or human emission it will send data to the web if it is in the room has people and the red LED lights up and the buzzer sounds, while the push button button is when the push button button is pressed the solenoid will open. By making this design, it will help improve room security at the Demak Regency Communication and Information Service, especially the Encryption Room

The rapidly evolving landscape of cryptanalysis necessitates an urgent and detailed exploration of the high-degree non-linear functions that govern the relationships between plaintext, key, and encrypted text. Historically, the complexity of these functions has posed formidable challenges to cryptanalysis. However, the advent of deep learning, supported by advanced computational resources, has revolutionized the potential for analyzing encrypted data in its raw form. This is a crucial development, given that the core principle of cryptosystem design is to eliminate discernible patterns, thereby necessitating the analysis of unprocessed encrypted data. Despite its critical importance, the integration of machine learning, and specifically deep learning, into cryptanalysis has been relatively unexplored. Deep learning algorithms stand out from traditional machine learning approaches by directly processing raw data, thus eliminating the need for predefined feature selection or extraction. This research underscores the transformative role of neural networks in aiding cryptanalysts in pinpointing vulnerabilities in ciphers by training these networks with data that accentuates inherent weaknesses alongside corresponding encryption keys. Our study represents an investigation into the feasibility and effectiveness of employing machine learning, deep learning, and innovative random optimization techniques in cryptanalysis. Furthermore, it provides a comprehensive overview of the state-of-the-art advancements in this field over the past few years. The findings of this research are not only pivotal for the field of cryptanalysis but also hold significant implications for the broader realm of data security.