Text

Rancang bangun cyber security maturity (CSM) tools multi-platform app sebagai inovasi layanan Direktorat Keamanan Siber dan Sandi Industri

---

Abstrak:
Tools Web Multi-platform" untuk Direktorat Keamanan Siber dan Sandi Industri (D4.4). Tujuannya adalah mengatasi kendala dalam manajemen dan keamanan data hasil self-assessment pada CSM Tools. Otomatisasi CSM Tools dianggap sebagai inovasi layanan untuk D4.4, mempermudah stakeholder dalam melakukan self-assessment, pertukaran data efektif, dan validasi data dengan meningkatkan keamanan tools yang bersifat classified. Penggunaan sistem informasi lebih optimal daripada hardcopy berdasarkan studi sebelumnya. Oleh karena itu, dikembangkan aplikasi web multi-platform yang menggunakan metode Multi-Factor Authentication (MFA) dengan Time-Based One-Time Password (TOTP) untuk kode sandi sementara melalui email. Hasil penelitian menunjukkan aplikasi CSM Tools Web Multi-platform memenuhi harapan proyek sponsor, Direktorat Keamanan Siber dan Sandi Industri. User acceptance test pada prototipe menunjukkan tingkat kesepakatan yang baik dari pengguna. Penerapan skema MFA dengan TOTP meningkatkan keamanan autentikasi login, terbukti oleh panduan keamanan software web OWASP dan pengujian OWASP ZAP. Saran untuk penelitian selanjutnya mencakup penyesuaian kompleksitas aplikasi dengan dinamika lapangan Direktorat Keamanan Siber dan Sandi Industri, penambahan fitur, dan fitur pendukung rekomendasi perbaikan. Kesimpulannya, aplikasi CSM Tools Web Multi-platform dengan MFA merupakan inovasi layanan efektif untuk meningkatkan keamanan dan validitas data hasil self-assessment pada Direktorat Keamanan Siber dan Sandi Industri. Aplikasi ini memfasilitasi akses dan pelayanan sesuai konteks organisasi.

Abstract:
This research discusses the development of the "Cyber Security Maturity (CSM) Tools Web Multi-platform" application for the Directorate of Cyber Security and Industrial Coding (D4.4). The goal is to overcome obstacles in the management and security of self-assessment data on CSM Tools. Automation of CSM Tools is considered a service innovation for D4.4, making it easier for stakeholders to conduct self-assessment, effective data exchange, and data validation by increasing the security of classified tools. The use of information systems is more optimal than hardcopy based on previous studies. Therefore, a multi-platform web application was developed that uses the Multi-Factor Authentication (MFA) method with Time-Based One-Time Password (TOTP) for a temporary passcode via email. The results showed that the CSM Tools Web Multi-platform application met the expectations of the project sponsor, the Directorate of Cybersecurity and Industrial Coding. User acceptance test on the prototype showed a good level of agreement from users. The implementation of MFA scheme with TOTP improves the login authentication security, as proven by OWASP web software security guidelines and OWASP ZAP testing. Suggestions for future research include adjusting the complexity of the application with the field dynamics of the Directorate of Cybersecurity and Industrial Coding, adding features, and supporting features for improvement recommendations. In conclusion, the CSM Tools Web Multi-platform application with MFA is an effective service innovation to improve the security and validity of self-assessment data at the Directorate of Cybersecurity and Industrial Coding. This application facilitates access and services according to the organizational context

---

Availability

Detail Information

Series Title

--

Call Number

2023 YEH r

Publisher

Bogor : Politeknik Siber dan Sandi Negara., 2023

Collation

xvii, 68 halaman

Language

Indonesia

ISBN/ISSN

--

Classification

Rekayasa Perangkat Lunak Kriptografi

Content Type

-

Media Type

-

Carrier Type

-

Edition

--

Subject(s)

Security
e-Learning
Multi Factor Authentication
CSM Tools
TOTP
multi-platform

Specific Detail Info

--

Statement of Responsibility

Yehezikha Beatrix Natasya Ully

Other version/related

File Attachment

Comments

---

You must be logged in to post a comment