Jurnal E-Komtek
Vol 8 No 2 (2024)

Evaluasi Autentikasi Dua Faktor (2FA) TOTP Pada Perguruan Tinggi Menggunakan Vulnerability Assessment dan CIA Triad

Heru Wijayanto Aripradono (Unknown)
Haeruddin (Unknown)
Kurnia Cantra (Unknown)

Article Info

Publish Date
26 Nov 2024

Abstract

Vulnerability exploitation in education websites often leads to data breaches, negatively impacting learning activities, notably higher education, which is highly susceptible to such attacks. This research evaluates the effectiveness of two-factor authentication in mitigating exploitability. To analyze issues further, vulnerability assessment tools, such as Burp Suite and ZAP, can explore website vulnerability and the CIA Triad framework (Confidentiality, Integrity, Availability). The analysis revealed three medium-level vulnerabilities and six low-level vulnerabilities; key topics such as CSRF (Cross-Site Request Forgery) and XSS (Cross-Site Scripting), compromise integrity, and MITM (Man-In-The-Middle) attacks threaten Confidentiality, these vulnerabilities indicate non-compliance with CIA Triad, mitigation strategy such are VPN (Virtual Private Network), and WAF (Web Application Firewall) were proposed. While two-factor authentication improves security, additional fixes and optimizations are required for its effective implementation in the education sector.

Copyrights © 2024




Citation Download
RIS
EndNote, Reference Manager, ProCite
BibTex
Latex, Jabref
Original Source
Download Original
Google Scholar
Check in Google Scholar
Journal Info
Jurnal E-Komtek
Website

Abbrev

E-KOMTEK

Publisher

Politeknik Piksi Ganesha Indonesia

Subject

Computer Science & IT Electrical & Electronics Engineering

Description

Jurnal E-Komtek (Elektro-Komputer-Teknik) is a Journal that contains scientific articles in the form of research results, analytical studies, application of theory, and discussion of various problems relating to Electrical, Computer, and Automotive Mechanical ...