Article Per Year (5 Year)
p-Index From 2021 - 2026
1.116
P-Index
This Author published in this journals
All Journal Sinkron : Jurnal dan Penelitian Teknik Informatika Jurnal Teknologi Sistem Informasi dan Aplikasi Journal of Information Systems and Informatics Journal of Computer Networks, Architecture and High Performance Computing Jurnal Inovasi Pendidikan dan Teknologi Informasi (JIPTI)
Sitorus, Riama Santy
Unknown Affiliation
Computer Science & IT Education Other

Published : 6 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 6 Documents
Search

 1 
Seedling and Seed Ordering System: A PWA Prototype Implementation Shintya, Yana; Sitorus, Riama Santy; Darmadi, Roby
Journal of Information System and Informatics Vol 6 No 4 (2024): December
Publisher : Universitas Bina Darma

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.51519/journalisi.v6i4.890

Abstract

Air pollution in urban areas is a significant global challenge, and Jakarta is one of Southeast Asia's most polluted major cities. Efforts to address this problem are through the greening of urban areas. The Jakarta Special Region Seed and Plant Protection Development Center (PPBPT) is vital in providing and distributing plant seeds to the community. However, ordering manual seeds is still a significant obstacle to effective and efficient distribution. This research aims to develop a prototype application of Progressive Web Applications (PWA) based seed and seed ordering information system. Using the Extreme Programming (XP) method in this research, the PWA application provides a new perspective to accelerate the handling of urban environmental problems while providing reliable public digital services. The application development cycle with the XP method produces good software with faster turnaround time, lower costs, and responsiveness to user needs. The research results in an information system prototype application with various functions, such as user registration, identity verification, seedling ordering, stock management, and order history. The system proved to automate the seedling ordering process significantly, thus improving stock management efficiency and seedling distribution in 18 gardens under PPBPT. Indirectly, the results of this research support urban greening and contribute to improving air quality in Jakarta. Furthermore, the application can be developed by adding various forms of digital technology to help urban greening in different forms of support or other public service applications.
Machine Learning for Securing API Gateways : a Systematic Literature Review Hutagaol, B. Junedi; Sitorus, Riama Santy; Simanjuntak, Dita Madonna
Journal of Computer Networks, Architecture and High Performance Computing Vol. 7 No. 3 (2025): Articles Research July 2025
Publisher : Information Technology and Science (ITScience)

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.47709/cnahpc.v7i3.6788

Abstract

The rapid growth of mobile banking has improved access to financial services but also introduced heightened cybersecurity risks, particularly due to vulnerabilities in API Gateways and limited user awareness of cyber threats. This study conducts a Systematic Literature Review (SLR) to explore how machine learning (ML) can address both technical and human-centric security challenges in digital banking. By reviewing sixteen peer-reviewed studies published between 2019 and 2025, the study identifies key ML techniques such as anomaly detection, behavior-based models, and deep learning architectures that are effective in detecting and mitigating API-based attacks. In parallel, the review examines ML applications aimed at enhancing user cybersecurity awareness, including personalized alert systems, user segmentation, and adaptive education mechanisms. Thematic synthesis reveals several challenges, including data availability and privacy, the interpretability of complex models, and integration with existing banking infrastructures. However, the study also highlights significant opportunities, such as the use of federated learning to preserve privacy, explainable AI to improve trust, and dynamic alert systems to prevent user fatigue. Based on the synthesis, a conceptual architecture is proposed to integrate ML-driven API threat detection and user education within mobile banking platforms. The findings provide valuable insights for both academic research and practical implementation, contributing to the development of intelligent, user-aware cybersecurity frameworks in the financial sector.Keywords: API Gateway Security, Cybersecurity Awareness, Machine Learning, Mobile Banking, Systematic Literature Review.
Designing a Zero Trust Architecture for Securing API Gateways in Digital Banking Systems Sitorus, Riama Santy; Hutagaol, B. Junedi
Journal of Information System and Informatics Vol 7 No 3 (2025): September
Publisher : Universitas Bina Darma

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.51519/journalisi.v7i3.1219

Abstract

In the era of digital banking transformation, Application Programming Interfaces (APIs) are essential for system integration and customer-facing innovations but also increase exposure to cyber security risks such as credential theft, API abuse, data breaches, and unauthorized access. This research proposes a conceptual Zero Trust Architecture (ZTA) model specifically designed to secure API Gateways in digital banking systems. Adopting a conceptual design methodology comprising literature review, component identification, architectural modelling, standards-based evaluation, and recommendation development the study introduces a framework that integrates core Zero Trust principles. Strong identity verification counters credential misuse, dynamic access control mitigates unauthorized access, encryption protects sensitive financial data, continuous monitoring identifies abnormal traffic, and real-time behavioral analytics prevents API abuse. Each component is mapped to relevant industry standards, ensuring resilience and regulatory compliance. Beyond the conceptual design, the findings highlight practical implications: applying ZTA at the API Gateway strengthens cyber security defenses against modern API threats, supports regulatory readiness, and provides banks with a structured roadmap for secure digital services. The study concludes that the proposed model delivers a comprehensive foundation for secure API communication in digital banking and actionable guidance for future implementation and research.
Capability-Based API Gateway Technology Selection Analysis for Banking Cybersecurity Solution Using AHP Method Sitorus, Riama Santy; Hutagaol, B Junedi; Simanjuntak, Dita Madonna
Sinkron : jurnal dan penelitian teknik informatika Vol. 9 No. 1 (2025): Research Article, January 2025
Publisher : Politeknik Ganesha Medan

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.33395/sinkron.v9i1.14328

Abstract

The growing reliance on APIs in the banking sector, driven by digital transformation, necessitates robust API Gateways that balance performance with strong security measures to address risks like API abuse, man-in-the-middle attacks, and data scraping, while ensuring compliance with regulations such as PCI-DSS, GDPR, and OJK standards. This study bridges the gap in technical guidance by developing a comprehensive evaluation framework using the Analytic Hierarchy Process (AHP) to determine the most suitable API Gateway for banking. The findings identify Apigee as the optimal choice, scoring 1.4277 for its superior authentication, traffic encryption, threat detection, deployment flexibility, cloud integration, and API management. IBM API Connect, scoring 0.6186, is a strong alternative with excellent security and management features but limited scalability and deployment flexibility. Kong and Axway API Gateway follow with scores of 0.4215 and 0.4627, excelling in deployment and integration but lacking critical security features for banking. This research emphasizes the strategic importance of selecting the right API Gateway to bolster cybersecurity and API management in banking, recommending Apigee as the primary solution and IBM API Connect for complex IT infrastructures. It also contributes to the literature by providing a structured, quantitative approach to API Gateway selection and suggests future research exploring AI integration, advanced analytics, and cost-benefit analyses for informed decision-making in the financial sector.
Identifikasi Tingkat Kesadaran Pengguna Mobile Banking terhadap Ancaman Cybercrime Hutagaol, B. Junedi; Sitorus, Riama Santy; Hutagaol, Nindya
Jurnal Teknologi Sistem Informasi dan Aplikasi Vol. 7 No. 3 (2024): Jurnal Teknologi Sistem Informasi dan Aplikasi
Publisher : Program Studi Teknik Informatika Universitas Pamulang

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.32493/jtsi.v7i3.41639

Abstract

The development of information technology has brought about a significant increase in the number of people connected to and using the internet. However, this phenomenon also poses serious risks regarding the security of valuable information such as passwords, financial information, and other sensitive data, making them attractive targets for attackers. Attacks on this infrastructure not only have the potential to cause data breaches but also significant financial impacts and even threats to lives. Protecting oneself from these threats, and considering the crucial role of humans in the technology ecosystem, emphasizes the importance of enhancing cybersecurity awareness. This study aims to explore the awareness levels of mobile banking users regarding cybercrime threats, involving the participation of 403 respondents. Questionnaire data processing results showed that 51% of the total respondents have experienced cybercrime attempts, and 21% have been victims. Respondents' awareness levels varied between 3.49 and 4.05 on a Likert scale (1-5). Several factors significantly influence respondents' awareness levels, such as age, occupation, personal experience as a victim of cybercrime attempts, and interactions between variables.
CLOUD NATIVE ZERO TRUST API GATEWAY ARCHITECTURE  FOR DIGITAL BANKING SYSTEMS Hutagaol, B. Junedi; Sitorus, Riama Santy
Jurnal Inovasi Pendidikan dan Teknologi Informasi (JIPTI) Vol. 7 No. 1 (2026): Jurnal Inovasi Pendidikan dan Teknologi Informasi (JIPTI)
Publisher : Information Technology Education Department

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.52060/jipti.v7i1.4065

Abstract

Abstract The increasing reliance on Application Programming Interfaces (APIs) in digital banking has expanded the attack surface of distributed systems, exposing limitations in traditional perimeter-based security models within cloud-native environments. This study aims to develop a Cloud-native Zero Trust API Gateway architecture that enables secure, scalable, and compliant API communication in digital banking ecosystems. A qualitative research approach was employed using a systematic literature review combined with architectural synthesis and expert validation to identify key security requirements and design principles. The findings demonstrate that integrating Zero Trust principles such as continuous authentication, identity-centric access control, least-privilege enforcement, and micro-segmentation into cloud-native components, including API Gateways, service meshes, and identity management systems, enables consistent, multi-layered security enforcement across distributed services. The proposed model further aligns security controls with international standards, including OWASP API Security Top 10, PCI DSS, and ISO/IEC 27001, reducing fragmentation between regulatory compliance and architectural implementation. This study concludes that embedding Zero Trust Architecture (ZTA) principles within a cloud-native API Gateway provides a unified and adaptive security framework capable of addressing the dynamic and complex security challenges of modern digital banking systems. Keywords: API; API Gateway; Cloud-native; Digital Banking; Zero Trust Architecture (ZTA).
Co-Authors Hutagaol, B Junedi Hutagaol, B. Junedi Hutagaol, Nindya Roby Darmadi Shintya, Yana Simanjuntak, Dita Madonna