Penerapan Fault Injection based Security Testing untuk Menemukan Potensi Celah Keamanan Indor pada Platform XYZ
DOI:
https://doi.org/10.22441/format.2025.v14.i1.001Abstract
Security Disclosure has become an important program in identifying and addressing vulnerabilities in software systems across various organizations and institutions by providing an opportunity for system testing through collaboration with external parties. This research aims to provide a deeper understanding of security disclosure through the Security Disclosure program on Platform XYZ, with a focus on Fault Injection techniques through parameter manipulation to discover IDOR (Insecure Direct Object Reference) vulnerabilities. The research begins by explaining the importance of the Security Disclosure program in the context of software security and system improvement. Furthermore, this study conducts testing on Fault Injection techniques through parameter manipulation, which is used to search for IDOR vulnerabilities on Platform XYZ. By manipulating input parameters, researchers can test the system by inducing unexpected behavior that can reveal sensitive information or grant unauthorized access to permissions. Case studies and real-world examples are used to demonstrate the effectiveness and impact of Fault Injection techniques in enhancing system security. The research findings have shown a high level of IDOR vulnerability with an impact on thousands of users. This research also highlights the importance of broader understanding of software security and security awareness for organizations and individual users. It is expected that this research will contribute to improving understanding of security disclosure and Fault Injection techniques through parameter manipulation, as well as promoting higher security awareness in protecting software systems from attacks and safeguarding sensitive user data on Platform XYZ.
Downloads
Downloads
Published
How to Cite
Issue
Section
License
The copyright to this article is transferred to Universitas Mercu Buana (UMB) if and when the article is accepted for publication. The undersigned hereby transfers any and all rights in and to the paper including without limitation all copyrights to UMB. The undersigned hereby represents and warrants that the paper is original and that he/she is the author of the paper, except for material that is clearly identified as to its original source, with permission notices from the copyright owners where required. The undersigned represents that he/she has the power and authority to make and execute this assignment.
We declare that this paper has not been published in the same form elsewhere.
Furthermore, I/We hereby transfer the unlimited rights of publication of the above-mentioned paper as a whole to UMB. The copyright transfer covers the right to reproduce and distribute the article, including reprints, translations, photographic reproductions, microform, electronic form (offline, online) or any other reproductions of similar nature.
The corresponding author signs for and accepts responsibility for releasing this material on behalf of any and all co-authors. This agreement is to be signed by at least one of the authors who have obtained the assent of the co-author(s) where applicable. After submission of this agreement signed by the corresponding author, changes of authorship or in the order of the authors listed will not be accepted.
Retained Rights/Terms and Conditions
Although authors are permitted to re-use all or portions of the Work in other works, this does not include granting third-party requests for reprinting, republishing, or other types of re-use.
Our Articles are licensed under CC BY-NC
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
