Analisis Keamanan dan Pengujian Access Control pada Website Pendidikan: Studi Kasus di Universitas Hamzanwadi Lombok
Keywords:
website, security, access control, attacker
Abstract
Hamzanwadi University is a higher education institution that uses a website to manage academic and administrative information. With the increasing number of website users, the potential risks also grow if proper security measures are not in place. Websites with vulnerabilities can be exposed to numerous threats from unauthorized parties seeking to exploit security weaknesses, particularly in the access control system that manages critical access. This study aims to enhance website security, focusing on access control, by conducting vulnerability analysis and security testing on the website hamzanwadi.ac.id through Automated Security Testing. The testing results indicate vulnerabilities in the access control or admin page, which could be exploited by unauthorized attackers, thereby posing risks to the involved parties.
References
[1] Prihandoyo Teguh, M. (2018). Unified Modeling Language (UML) Model Untuk Pengembangan Sistem Informasi Akademik Berbasis Web. Jurnal Informatika: Jurnal Pengembangan IT (JPIT), Vol.03, No.01.
[2] Harahap Parlindungan & Ilka Zufria. (2024). Analisis Keamanan Pada Website UPM SAINTEK UINSU Medan Menggunakan Metode Vulnerability Assesment. Cosmic Jurnal Teknik, Vol. 2 No. 1.
[3] Indri Widya Wulandari & Hwihanus (2023). PERAN SISTEM INFORMASI AKUNTANSI DALAM PENGAPLIKASIAN ENKRIPSI TERHADAP PENINGKATAN KEAMANAN PERUSAHAAN. Jkpim: Jurnal Kajian dan Penalaran Ilmu Manajemen Vol.1, No.1 Januari 2023.
[4] Mochammad Dzaki Al Vriano (2023). PENGUJIAN KEAMANAN WEB JUICE SHOP DENGAN METODE PENTESTING BERBASIS OWASP TOP 10. Kohesi: Jurnal Multidisiplin Saintek, Volume 01, No. 06 2023, pp. 81-90.
[5] M. Fery Afrizal Ramadhan, Asri Samsiar Ilmananda (2024). ANALISIS ANCAMAN KEAMANAN PADA SISTEM INFORMASI AKADEMIK KAMPUS MENGGUNAKAN METODE OWASP ZAP. JATI (Jurnal Mahasiswa Teknik Informatika) Vol. 8 No. 4, Agustus 2024.
[6] Vaadata.com. (2024). “Introduction to Nuclei, an Open Source Vulnerability Scanner”. https://www.vaadata.com/blog/introduction-to-nuclei-an-open-source-vulnerability-scanner/. Diakses pada, Kamis, 31 Oktober 2024.
[7] Geeksforgeeks.org. (2021). “Webkiller v2.0 – Alat Pengumpul Informasi Alat di Kali Linux.” https://www.geeksforgeeks.org/webkiller-v2-0-tool-information-gathering-tool-in-kali-linux/ . Diakses pada, kamis, 31 Oktober 2024.
[8] Nugroho Agung Prasetiyo, dkk (2024). AUDIT DAN ANALISIS WEBSITE PEMERINTAH MENGGUNAKAN PENGUJIAN PENETRASI SQL INJECTION. Jurnal Teknologi Informasi, Komputer dan Aplikasinya (JTIKA) Vol. 6, No. 2, September 2024, (Terakreditasi Sinta-4, SK No:164/E/KPT/2021).
[9] Esra Abdullatif Altulaihan, dkk (2023). A Survey on Web Application Penetration Testing. Electronics 2023, 12, 1229.
[10] Mia Zattu Maharani, dkk (2017). ANALISIS KEAMANAN WEBSITE MENGGUNAKAN METODE SCANNING DAN PERHITUNGAN SECURITY METRIKS. e-Proceeding of Applied Science : Vol.3, No.3 Desember 2017 | Page 1775.
[11] Fazrin Tri Wahyuni, dkk (2024). ANALISIS VULNERABILITY DAN RISK ASSESMENT TERHADAP WEBSITE PT. DAPUR COKELAT INDONESIA MENGGUNAKAN METODE PENETRATION TESTING. Seminar Nasional Mahasiswa Fakultas Teknologi Informasi (SENAFTI), 7 September 2024 – Jakarta, Indonesia.
[12] Buthayna AlSharaa, dkk (2023). Selected advanced themes in ethical hacking and penetration testing. Computer Science and Information Technologies Vol. 4, No. 1, March 2023, pp. 69~75.
[13] Laila Fadila Burhani & Diah Priyawati (2024). ANALISIS PENGUJIAN KEAMANAN WEBSITE PENGELOLAAN INTERNET DESA KRAGAN MENGGUNAKAN METODE PENETRATION TESTING EXECUTION STANDARD (PTES). JIPI (Jurnal Ilmiah Penelitian dan Pembelajaran Informatika) Vol. 9, No. 1, Maret 2024, Pp. 307-319.
[14] Ferby Septian1, dkk. (2024). Pengujian Keamanan Website dengan Metode Penetration Testing (Studi Kasus: Universitas Esa Unggul). INNOVATIVE: Journal Of Social Science Research Volume 4 Nomor 5 Tahun 2024 Page 3629-3647.
[2] Harahap Parlindungan & Ilka Zufria. (2024). Analisis Keamanan Pada Website UPM SAINTEK UINSU Medan Menggunakan Metode Vulnerability Assesment. Cosmic Jurnal Teknik, Vol. 2 No. 1.
[3] Indri Widya Wulandari & Hwihanus (2023). PERAN SISTEM INFORMASI AKUNTANSI DALAM PENGAPLIKASIAN ENKRIPSI TERHADAP PENINGKATAN KEAMANAN PERUSAHAAN. Jkpim: Jurnal Kajian dan Penalaran Ilmu Manajemen Vol.1, No.1 Januari 2023.
[4] Mochammad Dzaki Al Vriano (2023). PENGUJIAN KEAMANAN WEB JUICE SHOP DENGAN METODE PENTESTING BERBASIS OWASP TOP 10. Kohesi: Jurnal Multidisiplin Saintek, Volume 01, No. 06 2023, pp. 81-90.
[5] M. Fery Afrizal Ramadhan, Asri Samsiar Ilmananda (2024). ANALISIS ANCAMAN KEAMANAN PADA SISTEM INFORMASI AKADEMIK KAMPUS MENGGUNAKAN METODE OWASP ZAP. JATI (Jurnal Mahasiswa Teknik Informatika) Vol. 8 No. 4, Agustus 2024.
[6] Vaadata.com. (2024). “Introduction to Nuclei, an Open Source Vulnerability Scanner”. https://www.vaadata.com/blog/introduction-to-nuclei-an-open-source-vulnerability-scanner/. Diakses pada, Kamis, 31 Oktober 2024.
[7] Geeksforgeeks.org. (2021). “Webkiller v2.0 – Alat Pengumpul Informasi Alat di Kali Linux.” https://www.geeksforgeeks.org/webkiller-v2-0-tool-information-gathering-tool-in-kali-linux/ . Diakses pada, kamis, 31 Oktober 2024.
[8] Nugroho Agung Prasetiyo, dkk (2024). AUDIT DAN ANALISIS WEBSITE PEMERINTAH MENGGUNAKAN PENGUJIAN PENETRASI SQL INJECTION. Jurnal Teknologi Informasi, Komputer dan Aplikasinya (JTIKA) Vol. 6, No. 2, September 2024, (Terakreditasi Sinta-4, SK No:164/E/KPT/2021).
[9] Esra Abdullatif Altulaihan, dkk (2023). A Survey on Web Application Penetration Testing. Electronics 2023, 12, 1229.
[10] Mia Zattu Maharani, dkk (2017). ANALISIS KEAMANAN WEBSITE MENGGUNAKAN METODE SCANNING DAN PERHITUNGAN SECURITY METRIKS. e-Proceeding of Applied Science : Vol.3, No.3 Desember 2017 | Page 1775.
[11] Fazrin Tri Wahyuni, dkk (2024). ANALISIS VULNERABILITY DAN RISK ASSESMENT TERHADAP WEBSITE PT. DAPUR COKELAT INDONESIA MENGGUNAKAN METODE PENETRATION TESTING. Seminar Nasional Mahasiswa Fakultas Teknologi Informasi (SENAFTI), 7 September 2024 – Jakarta, Indonesia.
[12] Buthayna AlSharaa, dkk (2023). Selected advanced themes in ethical hacking and penetration testing. Computer Science and Information Technologies Vol. 4, No. 1, March 2023, pp. 69~75.
[13] Laila Fadila Burhani & Diah Priyawati (2024). ANALISIS PENGUJIAN KEAMANAN WEBSITE PENGELOLAAN INTERNET DESA KRAGAN MENGGUNAKAN METODE PENETRATION TESTING EXECUTION STANDARD (PTES). JIPI (Jurnal Ilmiah Penelitian dan Pembelajaran Informatika) Vol. 9, No. 1, Maret 2024, Pp. 307-319.
[14] Ferby Septian1, dkk. (2024). Pengujian Keamanan Website dengan Metode Penetration Testing (Studi Kasus: Universitas Esa Unggul). INNOVATIVE: Journal Of Social Science Research Volume 4 Nomor 5 Tahun 2024 Page 3629-3647.
Published
2025-01-02
How to Cite
Gymnastiar, P. (2025). Analisis Keamanan dan Pengujian Access Control pada Website Pendidikan: Studi Kasus di Universitas Hamzanwadi Lombok. Proceedings of the National Conference on Electrical Engineering, Informatics, Industrial Technology, and Creative Media, 4(1), 951-959. Retrieved from https://centive.ittelkom-pwt.ac.id/index.php/centive/article/view/317
