Article Per Year (5 Year)
p-Index From 2021 - 2026
7.853
P-Index
This Author published in this journals
All Journal Prosiding Seminar Nasional Sains Dan Teknologi Fakultas Teknik Jurnal Ilmiah Kursor Scan : Jurnal Teknologi Informasi dan Komunikasi Jurnal Teknologi Informasi dan Ilmu Komputer Jurnal Informatika dan Teknik Elektro Terapan JIEET (Journal of Information Engineering and Educational Technology) JURNAL TEKNIK INFORMATIKA DAN SISTEM INFORMASI JIPI (Jurnal Ilmiah Penelitian dan Pembelajaran Informatika) Journal of Information System, Applied, Management, Accounting and Research Jurnal Mantik Jutisi: Jurnal Ilmiah Teknik Informatika dan Sistem Informasi bit-Tech JATI (Jurnal Mahasiswa Teknik Informatika) Journal Cerita: Creative Education of Research in Information Technology and Artificial Informatics Bertuah : Jurnal Syariah dan Ekonomi Islam Journal of Applied Data Sciences International Journal Of Computer, Network Security and Information System (IJCONSIST) Jurnal Informatika Teknologi dan Sains (Jinteks) ILTEK : Jurnal Teknologi Jurnal Informatika Polinema (JIP) Repeater: Publikasi Teknik Informatika dan Jaringan Neptunus: Jurnal Ilmu Komputer dan Teknologi Informasi Uranus: Jurnal Ilmiah Teknik Elektro, Sains dan Informatika Jurnal Informatika Dan Tekonologi Komputer Jati Emas (Jurnal Aplikasi Teknik dan Pengabdian Masyarakat)
Achmad Junaidi
Universitas Pembangunan Nasional Veteran Jawa Timur
Religion Agriculture, Biological Sciences & Forestry Civil Engineering, Building, Construction & Architecture Computer Science & IT Control & Systems Engineering Decision Sciences, Operations Research & Management Economics, Econometrics & Finance Education Electrical & Electronics Engineering Engineering Industrial & Manufacturing Engineering Languange, Linguistic, Communication & Media Law, Crime, Criminology & Criminal Justice Library & Information Science Mechanical Engineering Public Health Social Sciences Other

Published : 65 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 65 Documents
Search

 3   4   5   6   7 
Evaluating Web Application Security Using OWASP Top 10 and NIST SP 800-115 Vierino, Farrel Tiuraka; Wahanani, Henni Endah; Junaidi, Achmad
bit-Tech Vol. 8 No. 3 (2026): bit-Tech
Publisher : Komunitas Dosen Indonesia

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.32877/bt.v8i3.3702

Abstract

Cybersecurity assurance for public-facing government websites remains critical amid accelerating digital transformation. This study adopts an exploratory–evaluative research design to systematically examine and validate the security posture of the Surabaya Public Slaughterhouse (RPH Surabaya) website through an integrated application of OWASP Top 10 (2021) as a vulnerability taxonomy and NIST SP 800-115 as a procedural testing framework. The methodology follows structured planning, discovery, attack, and reporting phases. Discovery combined reconnaissance tools (Nslookup, Whois, Nmap, Dirsearch, Wappalyzer, and Google Dorking) with OWASP ZAP scanning, while attack validation employed Burp Suite, SQLMap, and browser-based developer analysis within a controlled Kali Linux environment. Thirteen potential vulnerabilities were detected, of which ten were empirically confirmed after manual verification. Confirmed weaknesses were predominantly categorized as Security Misconfiguration, including missing Anti-CSRF protections, directory browsing exposure, absent Content Security Policy and anti-clickjacking headers, outdated JavaScript libraries, insecure cookie attributes (missing HttpOnly and SameSite), lack of Strict-Transport-Security and X-Content-Type-Options headers, and user-controllable HTML attributes. The contribution lies in demonstrating a reproducible dual-framework validation pipeline that distinguishes scanner alerts from confirmed exploitability, thereby strengthening methodological rigor in public-sector web security assessment. These findings indicate systemic configuration-level risk exposure that may elevate susceptibility to XSS, CSRF, clickjacking, and injection-related threats relative to comparable public-institution websites. However, the assessment is limited to a single institutional website and an unauthenticated testing scope, constraining generalizability and deeper application-layer analysis.
Uncovering Hidden Security Risks in Government Web Portals Using Penetration Testing and Attack Modeling Salsabila, Belia Putri; Endah Wahanani, Henni; Junaidi, Achmad
bit-Tech Vol. 8 No. 3 (2026): bit-Tech
Publisher : Komunitas Dosen Indonesia

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.32877/bt.v8i3.3776

Abstract

Government web portals that consolidate public services and process personally identifiable data are prime targets for cyber adversaries. However, many existing assessments rely on single-framework methodologies that provide limited adversarial context and insufficient prioritization guidance. This study evaluates the security posture of System X, a public-facing government portal in Indonesia, using a grey-box penetration testing approach that integrates OWASP Top 10:2021, CVSS v3.1, and MITRE ATT&CK. Automated scanning using OWASP ZAP and Nessus identified 12 potential vulnerabilities, which were subsequently validated through manual testing using Burp Suite, cURL, SQLmap, and browser developer tools. The validation process confirmed nine True Positives and three False Positives, resulting in a 25% false positive rate, consistent with prior studies on government web applications. The identified vulnerabilities fall within Broken Access Control, Security Misconfiguration, and Identification and Authentication Failures, with CVSS Base Scores ranging from 4.2 to 6.1. Unlike traditional severity-based assessments, the integration of MITRE ATT&CK enables adversarial behavior mapping and reveals dependency relationships between vulnerabilities. For example, a single Content Security Policy (CSP) misconfiguration was found to enable multiple attack techniques (T1059.007), demonstrating that addressing one root cause can mitigate several related vulnerabilities simultaneously. This integrated approach enhances vulnerability prioritization by providing both severity and attacker-context insights, offering more actionable remediation strategies compared to single-framework methods. The findings contribute to improving practical security assessment methodologies for government systems and support evidence-based cybersecurity decision-making.
STRATEGI AKSELERASI SERTIFIKASI HALAL BAGI UMKM SEKTOR KULINER DI INDONESIA SEBAGAI UPAYA PENGUATAN EKOSISTEM INDUSTRI HALAL BERKELANJUTAN Dunuroi Assuryani; Achmad Junaidi
Bertuah Jurnal Syariah dan Ekonomi Islam Vol. 7 No. 1 (2026): Bertuah Jurnal Syariah dan Ekonomi Islam
Publisher : Institut Agama Islam Negeri Datuk Laksemana Bengkalis, Indonesia

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.56633/jsie.v7i1.1462

Abstract

Indonesia menghadapi tantangan krusial dalam menyongsong kewajiban mandatori halal pada Oktober 2026, khususnya pada sektor UMKM kuliner yang merupakan pilar ekonomi nasional. Penelitian ini bertujuan untuk merumuskan strategi akselerasi sertifikasi halal melalui penguatan ekosistem industri halal yang berkelanjutan. Metode yang digunakan adalah Systematic Literature Review (SLR) dengan menyaring 200 literatur ilmiah menjadi 25 referensi inti melalui perangkat lunak Publish or Perish (PoP) dalam rentang tahun 2021-2026. Hasil penelitian menunjukkan bahwa hambatan utama UMKM saat ini telah bergeser dari kendala biaya menuju rendahnya literasi digital dan kompleksitas rantai pasok. Sebagai solusi, penelitian ini menawarkan model strategi "High-Tech, High-Touch" yang mengintegrasikan efisiensi platform SIHALAL dengan humanisme pendampingan Proses Produk Halal (PPH). Selain itu, penguatan ekosistem dilakukan melalui sinergi Pentahelix yang melibatkan pemerintah, akademisi, pelaku usaha, komunitas, dan media. Secara filosofis, strategi ini merupakan manifestasi prinsip Maqashid Syariah dalam aspek Hifdzun Nafs dan Hifdzun Mal. Kesimpulannya, akselerasi sertifikasi halal yang integratif dan kolaboratif tidak hanya mempercepat kepatuhan regulasi, tetapi juga memperkuat daya saing UMKM Indonesia dalam Global Halal Value Chain.
Implementasi Kerangka Kerja MITRE D3FEND dalam Mitigasi Serangan Ransomware LockBit 3.0 Syahbagus Radithya Haryo Santoso; Henni Endah Wahanani; Achmad Junaidi
Jutisi : Jurnal Ilmiah Teknik Informatika dan Sistem Informasi Vol 15, No 3 (2026): Juni 2026
Publisher : STMIK Banjarbaru

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.35889/jutisi.v15i3.3636

Abstract

Cybersecurity threats are escalating due to the evolution of LockBit 3.0 ransomware, which has disrupted national vital sectors. This study aims to demonstrate the implementation of the MITRE D3FEND framework to mitigate these attacks within a Windows 11 environment. An experimental method using a technical comparative analysis approach was applied and validated through 50 test iterations to ensure data reliability. The results indicate that the baseline unprotected system is completely vulnerable to the entire LockBit 3.0 attack chain. However, the deployment of MITRE D3FEND controls proactively enhances system resilience, achieving a 75% effectiveness score by successfully executing passive detection and real-time active blocking at critical attack vectors. This study concludes that a digital artifact-based defense strategy significantly hardens cyber infrastructure, while recommending future developments in artificial intelligence (AI) based adaptive mitigation automation.Kata kunci: MITRE D3FEND; LockBit 3.0; Cybersecurity; Ransomware; Mitigation AbstrakAncaman keamanan siber meningkat akibat evolusi ransomware LockBit 3.0 yang melumpuhkan berbagai sektor vital nasional. Penelitian ini bertujuan mendemonstrasikan implementasi kerangka kerja MITRE D3FEND dalam memitigasi serangan tersebut pada Windows 11. Metode eksperimen diterapkan melalui pendekatan analisis komparatif teknis yang divalidasi lewat 50 kali iterasi pengujian guna menjamin reliabilitas data. Hasil pengujian menunjukkan bahwa sistem standar tanpa proteksi sepenuhnya rentan terhadap seluruh rangkaian serangan LockBit 3.0. Namun, penerapan kontrol pertahanan MITRE D3FEND terbukti proaktif meningkatkan resiliensi sistem dengan skor efektivitas mencapai 75% melalui keberhasilan fungsi deteksi pasif serta pemblokiran aktif secara real-time di titik-titik krusial serangan. Penelitian ini menyimpulkan bahwa strategi pertahanan berbasis artefak digital secara signifikan memperkeras keamanan infrastruktur siber, sekaligus merekomendasikan pengembangan otomatisasi mitigasi adaptif berbasis kecerdasan buatan (AI) di masa depan. 
Satellite Image Super Resolution using Gradient-Prior Achmad Junaidi
IJCONSIST JOURNALS Vol 4 No 2 (2023): March
Publisher : International Journal of Computer, Network Security and Information System

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.33005/ijconsist.v4i2.107

Abstract

Super-resolution (SR) has been used in the realm of remote sensing to improve the resolution of an image and get more detailed spatial information than the original image captured by the sensor on the acquisition device. Several SR methods with different approaches, only focusing on sharpening the edges and forgetting non-edge areas. One of the SR methods that utilize prior gradients, can produce high resolution (HR) images in a short time and produce sharp images for non-homogeneous areas. But for areas that tend to be homogeneous, a lot of noise appears. This problem will affect the remote sensing process due to the amount of noise that arises. This paper offers to use dynamic weighting on the gradient prior that will reduce the noise on the homogeneous area, while still able to maintains to produce the sharp edges in non-homogeneous areas. An experimental comparison is conducted on both homogeneous and non-homogeneous area using the previous method and the proposed method.
Co-Authors Achmad Rozy Priambodo Afifudin, Muhammad Agung Mustika Rizki, Agung Mustika Akbar, Refansya Rachmad Akmal, Mohammad Faizal Al Fathoni, Hanif Andreas Nugroho Sihananto Andreas Nugroho Sihananto Anggraini Puspita Sari Anggraini Puspita Sari Anggraini Puspita Sari Ar Romandhon, Mitzaqon Gholizhan Ardiyansyah, Moh. Angga Arif Saifudin, Muhamad Ariq Musyaffah Ghufron, Althaf Arrisalah, Muhammad Baihaqi Bachtiar Riza Pratama Basuki Rahmat Basuki Rahmat Masdi Siduppa beni tiyas kristanti Ciptaagung Firjat Ardine Dafauzan Bilal Syaifulloh Darmawan, Marcellinus Aditya Vitro Diyasa, I Gede Susrama Mas Dunuroi Assuryani Dwi Arman Prasetya Efendi, Ridwan Eka Prakarsa Mandyartha Erik evranata Pardede Erik Iman Heri Ujianto Eva Yulia Puspaningrum Fatullah, Ryan Reynickha Fauzan Novriandy, Muhammad Fetty Tri Anggraeny Firza Prima Aditiawan Galan Ahmad Defanka Hafiyan Fazagi Adnanto Henni Endah Wahanani Henni Endah Wahanani I Gede Susrama Mas Diyasa Isworo, Muhamad Raihan Ramadhani Izzatul Fithriyah Kartini Kartini kristanti, beni tiyas Kurniawan, Muh. Irsyad Dwi Lesmana, Benedictus Rafael Mandyartha, Eka Prakarsa Maulana, Hendra Mochammad Yoga Firnanda Mohammad Haydir Awaludin Waskito Muhammad Azka Zaki Muhammad Muharrom Al Haromainy Mustika Rizki, Agung Mutiq Anisa Tanjung Muttaqin, Faisal Nugroho Sihananto, Andreas Nurlaili, Afina Lina Oktaviana, Dinda Friska Paramitha, Clara Diva Permanasari, Wahyu Melinda Prastyo, Kus Dwi Pratama, Novandi Kevin Prinafsika PW, Benar Setya Rachmadhany Iman Rafie Ishaq Maulana Rahmanda Putri, Endin Ratantja Kusumajati, Fatwa Rayya Ruwa'im Nafie Ridwan Efendi Riza Satria Putra Rizki, Agung Mustika Royan Fajar Sultoni Sajiwo, Achmad Fauzihan Bagus Salsabila, Belia Putri Sari, Allan Ruhui Fatmah Sebrina, Aida Fitriya Shahab, Muhammad Syaugi Sitompul, Pelean Alexander Jonas Syahbagus Radithya Haryo Santoso Thalita Syahlani Putri Tinambunan, Fernanda Vierino, Farrel Tiuraka Wahyu Gunawan, Rafif Ilafi Wardah Gracillaria Suharyono, Farra William Lijaya Therry, Renaldy Zaim, Mohammad Syarifuz