Article Per Year (5 Year)
p-Index From 2020 - 2025
0.61
P-Index
This Author published in this journals
All Journal International Journal of Electrical and Computer Engineering TRANSIENT: Jurnal Ilmiah Teknik Elektro Communications in Science and Technology Intechno Journal : Information Technology Journal
Nur Arifin Akbar
Jurusan Teknik Elektro Fakultas Teknik – Universitas Diponegoro Jl. Prof. Sudharto, SH – Tembalang, Semarang Jawa Tengah 50275
Computer Science & IT Control & Systems Engineering Decision Sciences, Operations Research & Management Electrical & Electronics Engineering Engineering

Published : 4 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 4 Documents
Search

 1 
IMPLEMENTASI PENUTUPAN CELAH KEAMANAN PADA APLIKASI WEB BERBASIS JOOMLA 1.5.5 SERTA SERVER BERBASIS UBUNTU 8.04 DENGAN KERNEL 2.6.24 Akbar, Nur Arifin; Somantri, Maman; Isnanto, R. Rizal
Transient: Jurnal Ilmiah Teknik Elektro TRANSIENT, VOL. 2, NO. 1, MARET 2013
Publisher : Universitas Diponegoro

Show Abstract | Download Original | Original Source | Check in Google Scholar | Full PDF (411.401 KB) | DOI: 10.14710/transient.2.1.209-215

Abstract

Abstrak Pertumbuhan bisnis yang pesat pada saat ini diimbangi dengan peningkatan kebutuhan terhadap aplikasi berbasis web akan membuat aplikasi web itu sendiri akan lebih sulit untuk diamankan. Sebagian besar kalangan korporat   menggunakan firewall, SSL, serta metode pengamanan dari segi jaringan maupun host pada web site mereka, namun kebanyakan serangan itu sendiri berasal dari tingkatan aplikasi sehingga pengamanan semacam ini tidak dapat mencegah serangan tersebut. Pada pemodelan Open System Interconnection (OSI), setiap pesan melalui tujuh lapisan dari protocol jaringan, termasuk di dalam lapisan aplikasi yang didalamnya terdapat HTTP serta protokol lain yang berhubungan dengan pertukaran konten, seperti  HTML, XML, Simple Object Access Protocol (SOAP), serta Web service. Banyak peretas tahu bagaimana cara membuat HTTP requests terlihat tidak berbahaya dari segi jaringan, akan tetapi tidak dengan data yang ada di dalamnya. Penyerangan dengan karier berupa HTTP dapat mengakses data ke database, menjalankan perintah dari sistem, serta mengubah konten dari Web site. Metode penetration test adalah salah satu cara yang paling efektif untuk mengidentifikasi kelemahan sistem dan kekurangan program. Dengan menerobos mekanisme pertahanan serta lolos dari control keamanan, seorang penetration tester dapat mengidentifikasi kemungkinan cara yang dilakukan peretas untuk membahayakan serta merusak  keamanan dari organisasi secara keseluruhan. Oleh karena itu, tujuan dari penetration test ini adalah untuk menunjukkan bagaimana peretas dapat mengakibatkan bahaya yang serius kepada organisasi serta dampaknya dalam hal lain seperti pengaruh pendapatan, reputasi, serta perlindungan konsumen.   Kata Kunci : aplikasi web, peretas, penetration test, keamanan, konten, HTTP, firewall, SSL, jaringan.     Abstract As businesses grow increasingly dependent upon Web applications, these complex entities grow more difficult to secure. Most companies equip their Web sites with firewalls, Secure Sockets Layer (SSL), and network and host security, but the majority of attacks are on applications themselves, so these technologies cannot prevent them. In the Open System Interconnection (OSI) reference model, every message travels through seven network protocol layers. The application layer at the top includes HTTP and other protocols that transport messages with content, including HTML, XML, Simple Object Access Protocol (SOAP) and Web services. Many hackers know how to make HTTP requests look benign at the network level, but the data within them is potentially harmful. HTTP-carried attacks can allow unrestricted access to databases, execute arbitrary system commands and even alter Web site content. A penetration test is one of the most effective ways to identify systemic weaknesses and deficiencies in these programs. By attempting to circumvent security controls and bypass security mechanisms, a penetration tester able to identify ways in which a hacker might be able to compromise an organization’s security and damage the organization as a whole. So that the goal is to show, in a safe and controlled manner, how an attacker might be able to cause serious harm to an organization and impact its ability to, among other things, generate revenue, maintain its reputation, and protect its customers.   Keyword: web applications, hacker, penetration test, security, content, HTTP, firewall, SSL, network.
The preliminary study of carbon x-change rakyat using blockchain application Putro, Wahyu Sasongko; Rahmi, Nitia; Asditama, Raditya Yoga; Akbar, Nur Arifin
International Journal of Electrical and Computer Engineering (IJECE) Vol 14, No 1: February 2024
Publisher : Institute of Advanced Engineering and Science

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.11591/ijece.v14i1.pp672-680

Abstract

Today’s air pollution is detrimental to the environment, particularly in Indonesia. Carbon dioxide (CO2) and nitrogen oxide (NOx) are present in the atmosphere due to air pollution. Many individuals employ reforestation to lessen the influence of CO2 and NOx gases on the atmosphere. However, in the digitalized era, lowering carbon emissions may also be accomplished through a carbon credit exchange. Thus, in this study we investigate the performance of the carbon x-change rakyat (CXR) based on blockchain platform utilizing the stress test approach. We provided four scenarios with 10,000 to 100,000 transactions evaluated on the CXR blockchain system i.e., transfer, insert, remove, and update. The outcome demonstrates CXR’s effectiveness with 100% success and 0% failure rate based on testing and statistical computations calculation. The mean absolute error (MAE), variance accounted for (VAF), and percent error (PE) are obtained with values ranging from 0.38% to 4.67%. In this study, the transaction per-second (TPS) is used to calculate include error request (IER) and exclude error request (EER) values around 312 to 746 milliseconds (ms). In addition, the TPS of CXR based on blockchain platform is a capability to create and trace database carbon certificate ownership (nonfinancial activity). It means CXR based on the blockchain platform has a fast response to process carbon certificate ownership for transactions across local and international countries in the world.
AniraBlock: A leap towards dynamic smart contracts in agriculture using blockchain based key-value format framework Saputra, Irwansyah; Arkeman, Yandra; Jaya, Indra; Hermadi, Irman; Akbar, Nur Arifin; Sutedja, Indrajani
Communications in Science and Technology Vol 8 No 2 (2023)
Publisher : Komunitas Ilmuwan dan Profesional Muslim Indonesia

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.21924/cst.8.2.2023.1240

Abstract

Blockchain technology offers data transparency and traceability, which is particularly useful in the agricultural sector, especially within the supply chains of commodities like coffee and fish. This sector often encounters issues such as quality degradation, unclear information, and socioeconomic injustice affecting stakeholders. The implementation of Static Smart Contracts (SSCs) on blockchains provides a structured method for executing agreements. However, this approach also has limitations, including a lack of flexibility and responsiveness to dynamic changes in the supply chain. Despite these challenges, blockchain remains a valuable tool for ensuring transaction transparency, traceability, and integrity, which are vital in agriculture. These limitations involve unchangeable parameters, rigid rules, and constraints on adaptability and scalability. This study aims to tackle these issues by designing a more dynamic and responsive smart contract system. We introduce AniraBlock, a revolutionary concept for the agricultural supply chain, particularly in the coffee and fish sectors, by implementing Dynamic Smart Contracts (DSCs) based on a key-value format framework. Unlike SSCs, DSCs offer enhanced adaptability and scalability, addressing the former's limitations. Our study adopts a mixed-method approach, utilizing both qualitative and quantitative data to validate AniraBlock's effectiveness. Preliminary results show significant improvements in data management and supply chain transparency. The proposed framework has the potential to influence the agricultural sector by boosting data integrity and operational efficiency.
Reverse Engineering GitHub CoPilot: Creating an OpenAI-Compatible Endpoint for Enhanced Developer Integration Akbar, Nur Arifin; Krida, Ardian Webi; Setiawan, Akbar
Intechno Journal : Information Technology Journal Vol. 6 No. 2 (2024): December
Publisher : Universitas Amikom Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.24076/intechnojournal.2024v6i2.1895

Abstract

This paper presents the reverse engineering of GitHub CoPilot to develop an OpenAI-compatible endpoint, enabling broader access and integration possibilities for AI-assisted code completion. By analyzing CoPilot's communication protocols and creating a proxy server that translates OpenAI API requests to CoPilot's internal API, we bridge the gap between proprietary tools and open standards. The implementation, allows developers to utilize CoPilot's capabilities within their preferred environments using the familiar OpenAI API interface. We detail the system architecture, authentication mechanisms, request processing pipeline, and performance optimization techniques. Our results demonstrate successful integration, with robust performance metrics, including low response times and high compatibility rates. This work opens avenues for enhanced developer productivity and flexibility in AI-assisted coding tools.
Co-Authors Asditama, Raditya Yoga Irman Hermadi Krida, Ardian Webi Maman Somantri Putro, Wahyu Sasongko R. Rizal Isnanto Rahmi, Nitia RR. Ella Evrita Hestiandari Saputra, Irwansyah Setiawan, Akbar Sutedja, Indrajani Yandra Arkeman