Kajian Kerentanan Keamanan Website Universitas XYZ Menggunakan Framework Open Web Application Security Project (OWAS)
Keywords:
Security, Website, OWASAbstract
Website security is a critical priority for educational institutions, including XYZ University, to safeguard their data and services from cyber threats. This study aims to assess the security vulnerabilities of XYZ University's website using the Open Web Application Security Project (OWASP) framework. The analysis revealed that the website has high-security risks with multiple vulnerabilities, such as Injection, Cross-Site Scripting (XSS), and Security Misconfiguration. The study employs an OWASP-based approach, encompassing risk identification, vulnerability analysis, and mitigation recommendations. The findings indicate that the primary weaknesses stem from inadequate input data protection, delayed software updates, and weak access controls. This research provides strategic recommendations to mitigate security risks, including strengthening input validation, updating systems, and implementing robust data encryption mechanisms. The results are expected to enhance the security posture of XYZ University's website and serve as a reference for proactive measures against cyber threats.
References
OWASP Foundation. 2023. OWASP Top 10: The Ten Most Critical Web Application Security Risks. Retrieved from https://owasp.org
Kim, S., & Park, J. 2022. Web application vulnerability detection using OWASP framework: A case study. International Journal of Information Security and Cybersecurity, 12(3), 45-56.
Gupta, A., & Sharma, R. 2023. Mitigating cross-site scripting and injection attacks using OWASP guidelines. Journal of Web Security Research, 9(1), 15-28.
Rajasekaran, V., & Kumar, R. 2022. Application of OWASP ZAP for identifying web security vulnerabilities. In Proceedings of the International Conference on Cybersecurity and Privacy (pp. 212-218).
Ahmad, M., & Zafar, R. 2023. Security analysis of educational institution websites using OWASP standards. Journal of Information Technology and Applications, 15(2), 67-80.
Saavedra, D., & Chacon, R. 2022. A framework for securing university websites: Lessons from OWASP implementation. Cybersecurity in Education Journal, 8(4), 101-114.
Subekti, T., & Nugroho, B. 2023. Analisis keamanan website menggunakan framework OWASP: Studi kasus pada lembaga pendidikan. Jurnal Teknologi Informasi dan Komputer, 9(2), 34-47.
Choudhury, R., & Das, S. 2023. Identifying and mitigating web security risks in higher education websites. International Journal of Cybersecurity Engineering, 6(3), 89-97.
OWASP Foundation. 2023. OWASP ZAP: User guide and best practices. Retrieved from https://owasp.org/www-project-zap/
Yusuf, M., & Pratama, H. 2022. Evaluasi kerentanan keamanan website menggunakan pendekatan OWASP. Jurnal Keamanan Siber dan Forensik Digital, 7(1), 12-22.
Alqahtani, A., & Alghamdi, A. 2022. Web application vulnerability testing using OWASP ZAP: Case study on online shopping platform. Journal of Cybersecurity Research, 14(2), 54-63.
Zhang, X., & Zhao, W. 2022. Security risk analysis and mitigation strategies for web applications based on OWASP. International Journal of Information Security, 10(4), 88-95.
Patel, K., & Shah, N. 2023. Security vulnerability testing and risk assessment of web applications using OWASP ZAP tool. Journal of Cybersecurity Techniques, 11(2), 112-120.
Kapoor, A., & Kaur, R. 2024. A comprehensive security analysis of government websites using OWASP guidelines. Journal of Public Sector Cybersecurity, 9(1), 39-50.
Gupta, R., & Tiwari, V. 2023. Securing university websites: Application of OWASP security standards in higher education. International Journal of Educational Technology and Security, 16(1), 78-89.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2024 Teguh Reskya Ramadhan, Riska Amelia, Budi Sunaryo, Zulfadli, Arnita
This work is licensed under a Creative Commons Attribution 4.0 International License.
http://creativecommons.org/licenses/by/4.0
