Text

Pembuatan cyber exercise untuk cybercrime investigation berbasis Open Source Intelligence (OSINT) Berdasarkan ENISA Cyber Exercise Cycle

---

Politeknik Siber dan Sandi Negara (Poltek SSN) merupakan perguruan institusi pendidikan untuk memenuhi kebutuhan sumber daya manusia di Badan Siber dan Sandi Negara (BSSN). Salah satu fungsi BSSN dalam Peraturan BSSN Nomor 6 tahun 2021 Tentang Organisasi dan Tata Kerja BSSN adalah melaksanaan dukungan investigasi. Kompetensi ini menurut Peraturan BSSN Nomor 11 Tahun 2020 adalah investigasi siber. Investigasi siber dapat dilaksanakan dengan memanfaatkan informasi dari sumber terbuka yang biasa disebut sebagai open source intelligence (OSINT). Namun, Poltek SSN belum memiliki sumber daya pembelajaran OSINT. Oleh karena itu, dalam penelitian ini dirancang dan dibangun cyber exercise untuk memberikan pemahaman mengenai pemanfaatan OSINT dala proses cybercrime investigation. Perancangan dan pembangunan cyber exercise dilakukan berdasarkan European Network and Information Security Agency (ENISA) Cyber Exercise Cycle dengan memanfaatkan sebuah laboratorium virtual simulasi yang dinamakan OSINT Range yang dibangun menggunakan system development life cycle (SDLC) dengan pendekatan waterfall development dan mengimplementasikan gamifikasi berdasarkan octalysis gamification framework. Skenario cyber exercise dibuat berdasarkan SEC487 SANS Institute. Hasil penelitian ini berupa OSINT Range yang bekerja sesuai fungsi yang dibutuhkan serta memenuhi kebutuhan pengguna berdasarkan user acceptance test (UAT) sebesar 91,7%. OSINT Range terbukti efektif meningkatkan terhadap pemanfaatan OSINT dalam cybercrime investigation sebesar 129,69% dengan menggunakan pengukuran one-group pretest posttest design. --

The National Cyber and Password Polytechnic (Poltek SSN) is an educational institution that produces candidates for state civil servants (ASN) to meet the human resource needs of the National Cyber and Crypto Agency (BSSN). One of the functions of the BSSN in BSSN Regulation Number 6 of 2021 concerning the Organization and Work Procedure of the BSSN is to carry out investigative support, digital forensics, and assisting expert statements. Competencies that are also related to the implementation of investigations according to BSSN Regulation No. 11 of 2020 are cyber investigations. Cyber investigations can be carried out by utilizing information from open sources known as open source intelligence (OSINT). However, the Poltek SSN does not yet have OSINT learning resources. Therefore, in this study a cyber exercise was designed and built which aims to provide an understanding of the use of OSINT in the cybercrime investigation process. The design and development of cyber exercise is carried out based on the European Network and Information Security Agency (ENISA) Cyber Exercise Cycle. Cyber exercise utilizes a virtual simultion laboratory called OSINT Range which is designed and built using a system development life cycle (SDLC) with a waterfall development approach and implements gamification based on the octalysis gamification framework. The cyber exercise scenario is based on SEC487 from SANS Institute. The results of this study are in the form of an OSINT Range that works according to the required functions and meets user needs based on the user acceptance test (UAT) of 91.7%. The OSINT Range was also proven to be effective in increasing participants' understanding of the use of OSINT in cybercrime investigation by 129.69% by using the one-group pretest posttest design measurement.

---

Availability

Detail Information

Series Title

-

Call Number

2022 MUH p

Publisher

Bogor : Politeknik Siber dan Sandi Negara., 2022

Collation

xvi, 150 hlm.

Language

Indonesia

ISBN/ISSN

--

Classification

--

Content Type

-

Media Type

-

Carrier Type

-

Edition

--

Subject(s)

gamifikasi
OSINT
Cyber exercise
Cybercrime Investigation

Specific Detail Info

-

Statement of Responsibility

Muhammad Rohmanur Rizqi

Other version/related

File Attachment

Comments

---

You must be logged in to post a comment