Optimasi Keamanan Informasi Pendaftaran Event Menggunakan Teknologi Blockchain
DOI:
https://doi.org/10.22441/fifo.2020.v12i1.007Keywords:
Aplikasi Web, Distributed Denial of Service (DDoS), Teknologi BlockchainAbstract
Abstract
CV. Nyebar is an IT-based start-up that deals with event data management using a web-based application. The Event system provides account registration services as a Member and Organizer. Members of the Event System must first have an account and log-in to be able to register for the event. The process of registering events so far has not been properly secured. The event registration process will send registrant information, but the information sent has not been secured and validated first, so the Event System is still vulnerable to cyber-attacks including the registration data sniffing attack and Distributed Denial of Service (DDoS) attacks. DDoS attacks are carried out by sending messages and packet requests continuously to the business sector, hosting, social sites originating from bot at one time, resulting in overloaded network servers because of the resources (bandwidth, memory, and CPU usage) they have. the network server is used up. Blockchain which has three techniques/mechanisms including the use of hashes and proof-of-work mechanisms which can be an alternative security for event registration information because it can maintain information security, data consistency, and DDoS attacks.
Keyword: Web Application, Distributed Denial of Service (DDoS), Blockchain
Abstrak
CV. Nyebar merupakan start-up berbasis IT yang bergelut dibidang pengelolaan data event menggunakan sebuah aplikasi berbasis web. Sistem Event menyediakan layanan pendaftaran akun sebagai Member dan Organizer. Member dari Sistem Event harus memiliki akun dan log-in terlebih dahulu untuk mendaftar sebuah event. Proses pendaftaran event sejauh ini belum diamankan dengan baik. Proses pendaftaran event akan mengirimkan informasi pendaftar, namun informasi yang dikirimkan belum diamanakan dan divalidasi terlebih dahulu, sehingga Sistem Event masih rentan akan serangan siber diantaranya adalah serangan sniffing data pendaftaran dan serangan Distributed Denial of Service (DDoS). Serangan DDoS dilakukan dengan mengirimkan pesan dan permintaan paket secara terus menerus kepada sektor bisnis, hosting, situs sosial yang berasal dari bot dalam satu waktu, sehingga mengakibatkan server jaringan menjadi overload karena sumber daya (bandwith, memory, dan CPU usage) yang dimiliki server jaringan habis terpakai. Blockchain yang memiliki dua teknik/mekanisme antara lain adalah penggunaan hash dan mekanisme proof-of-work, yang dapat menjadi alternatif pengamanan informasi pemdaftaran event karena dapat menjaga keamanan informasi, kekonsistenan data, dan serangan dari DDoS.
Keyword: Aplikasi Web, Distributed Denial of Service (DDoS), Teknologi Blockchain
Downloads
References
Riadi, I., Sunardi., & Muhammad, A. W. 2018. DDoS Detection Using Artificial Neural Network Regarding Variation of Training Function. Advanced Science Letters. Vol. 24(12), pp. 9163-9167.
Yudhana, A., Riadi, I., & Ridho, F. 2018. DDoS Classification Using Neural Network and Naïve Bayes Methods for Network Forensics. International Journal of Advanced Computer Science and Applications (IJACSA), Vol. 9(11), pp. 177-183.
Fadlil, A., Riadi, I., & Aji, S. 2017. DDoS Attacks Classification using Numeric Attribute-based Gaussian Naive Bayes. International Journal of Advanced Computer Science and Applications (IJACSA), Vol. 8(8), pp. 42-50.
Aziz, M., Umar, R., Ridho, F. 2019. Implemetasi Jaringan Saraf Tiruan Untuk Mendeteksi Serangan DDoS Pada Forensik Jaringan. Query: Journal of Information Systems. Vol. 3(1), pp. 46-52.
Muhammad, A. W., Riadi, I., & Sunardi. 2017. Deteksi Serangan DDoS Menggunakan Neural Network dengan Fungsi Fixed Moving Average Window. JISKa, Vol. 1(3), pp. 115-122.
Hermawan, R. (2012). Analisis konsep dan cara kerja serangan komputer distributed denial of service (DDoS). Faktor Exacta, vol. 5(1), 1-14.
Kristanto, A. 2003. Keamanan data pada jaringan komputer. Yogyakarta: Gava Media.
Kurniawan, Y. 2004. Kriptografi Keamanan Internet dan Jaringan Komunikasi. Bandung: INFORMATIKA.
S, L. Dito H., Toban, S. T. P., & Putra, P. W. 2019. Mengenal DDoS attack dan solusinya. Diambil pada tanggal 29 Oktober 2019, dari https://socs.binus.ac.id/2019/07/30/mengenal-ddos-attack-dan-solusinya-2/
Putra, G. D., Sumaryono, S., Widyawan. Rancang Bangun Identity and Access Management IoT Berbasis KSI dan Permissioned Blockchain. JNTETI. Vol. 7(4), pp. 384-390.
Harris, C. 21 Februari 2018. The History of Bitcoin. Diambil pada tanggal 29 Oktober 2019, dari https://cryptocurrencynews.com/the-history-of-bitcoin/
Efanov, D. & Roschin, P. 2018. The All-Pervasiveness of the Blockchain Technology. procediaComputer Science. pp. 116-121. Russia: Moscow.
Noorsanti, R. C., Yulianton, H., & Hadiono, K. 2018. Blockchain - Teknologi Mata Uang Kripto (Crypto Currency). Prosiding SENDI_U 2018. pp. 306-311. Semarang: Universitas Stikubank Semarang.
Perdani, M. D. K., Widyawan., & Santosa, P. I. 2018. Blockchain untuk keamanan transaksi elektronik perusahaan financial technology (studi kasus pada PT Xyz). Seminar Nasional Teknologi Informasi dan Multimedia 2018. Vol. 6(1), pp. 7-12.
KS3. 2019. Designing an algorithm. Diambil pada tanggal 5 Desember 2019, dari https://www.bbc.co.uk/bitesize/guides/z3bq7ty/revision/3
Sommerville, I. 2011. Software Engineering Ninth Edition. Pearson Education, Inc. United States of America.
Irawan, Y. 2017. Pengujian Sistem Informasi Pengelolaan Pelatihan Kerja UPT BLK Kabupaten Kudus dengan Metode Whitebox Testing. Journal Speed – Sentra Penelitian Engineering dan Edukasi. Vol. 9(3), pp. 59-63.
Fakhri, M. A., Aknuranda, I., Pramono, D. 2018. Implementasi Sistem Informasi Showroom Mobil (SISMOB) dengan Pemrograman Berbasis Objek (Studi Kasus: UD. Tomaru Oto). Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer. Vol. 2(9), pp. 2967-2974.
Alfisahrin, S. N. N. 2012. Pendekatan White Box Testing Untuk Menentukan Kualitas Perangkat Lunak dengan Menggunakan Bahasa Pemrograman C++. PARADIGMA. Vol. 14(1), pp. 69-78.
Alfaris, H. B. I., Anam, C., Masy’an, A. 2013. Implementasi Black Box Testing pada Sistem Informasi Pendaftaran Santri Berbasis Web Dengan Menggunakan PHP dan MySql. SAINTEKBU: Jurnal Sains dan Teknologi. Vol. 6(1), pp. 23-38
VI
Downloads
Additional Files
Published
How to Cite
Issue
Section
License
The copyright to this article is transferred to Universitas Mercu Buana (UMB) if and when the article is accepted for publication. The undersigned hereby transfers any and all rights in and to the paper including without limitation all copyrights to UMB. The undersigned hereby represents and warrants that the paper is original and that he/she is the author of the paper, except for material that is clearly identified as to its original source, with permission notices from the copyright owners where required. The undersigned represents that he/she has the power and authority to make and execute this assignment.
We declare that this paper has not been published in the same form elsewhere.
Furthermore, I/We hereby transfer the unlimited rights of publication of the above-mentioned paper as a whole to UMB. The copyright transfer covers the right to reproduce and distribute the article, including reprints, translations, photographic reproductions, microform, electronic form (offline, online) or any other reproductions of similar nature.
The corresponding author signs for and accepts responsibility for releasing this material on behalf of any and all co-authors. This agreement is to be signed by at least one of the authors who have obtained the assent of the co-author(s) where applicable. After submission of this agreement signed by the corresponding author, changes of authorship or in the order of the authors listed will not be accepted.
Retained Rights/Terms and Conditions
Although authors are permitted to re-use all or portions of the Work in other works, this does not include granting third-party requests for reprinting, republishing, or other types of re-use.
Our Articles are licensed under CC BY-NC
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
