Publication Search

Relational databases, an essential component in modern information systems, are vulnerable to various security threats, both internal such as abuse of access rights, and external such as SQL injection, malware, and hacking. Given these conditions, how can relevant mitigation strategies be implemented to protect data security in relational databases? This article aims to identify the main threats to relational database security and map out relevant mitigation strategies. The method used is a literature review of various recent scientific journals that discuss aspects of data security in the context of relational databases. The results of the review indicate that threats such as SQL injection can be overcome by strict input validation, abuse of access rights can be prevented through role-based access control (RBAC), malware attacks can be detected using an intrusion detection system (IDS), and hacking actions can be minimized through the implementation of data encryption. This study is expected to be a reference in designing effective security strategies to protect data in relational databases.

Software testing is a critical phase in information system development to ensure the system's quality and reliability. This study aims to evaluate the reliability and functionality of PT Perta Sakti Abadi's financial information system using the black-box testing method with the Equivalence Partitioning (EP) technique. This technique allows input data to be grouped into valid and invalid categories, minimizing test cases without reducing testing coverage. The testing focuses on the login feature as the system's primary component by evaluating various input combinations. The testing scenarios include boundary conditions to ensure the system handles inputs correctly in various situations.The results indicate that the system successfully verifies valid credentials, rejects access with invalid data, and provides informative error messages. Additionally, the system demonstrates resilience in handling testing scenarios, including inputs with special characters and empty fields. Input validation mechanisms function optimally, supporting secure user access and ensuring the login feature aligns with functional specifications. This successful testing forms a strong foundation for testing other modules, such as multi-level authentication and data encryption. Thus, the Equivalence Partitioning technique within the black-box testing method proves effective in enhancing the quality of web-based financial information systems.

This study focuses on black-box testing of JivaJoy software, an online product stock management and ordering system. The primary goal of this research is to evaluate the functionality and performance of the system's key features, including profile management, CRUD operations for admin and customer accounts, product stock management, shopping cart, order management, and AI counseling. Black-box testing was applied to assess whether these features meet expected operational standards and user requirements without considering the internal code structure. The test results indicate that most features function as expected. However, some issues were identified related to input validation, particularly with email format, phone number length, file uploads, and product stock management. Additionally, the order management and AI counseling features showed deficiencies in error handling and input validation. Based on these findings, the study recommends improvements in input validation, product stock management, shopping cart functionality, and AI counseling systems to enhance the reliability and performance of the JivaJoy platform. These enhancements are essential to deliver more efficient, secure, and optimal services, ensuring better user experiences and customer satisfaction.