<![CDATA[Abstrak - Penelitian ini mengusulkan perancangan dan implementasi sistem login berbasis web Siakad yang menerapkan prinsip Zero Trust Architecture (ZTA) dengan integrasi Data Lifecycle Management (DLM). Model keamanan tradisional berbasis perimeter dinilai tidak lagi efektif menghadapi ancaman siber modern seperti pencurian kredensial, serangan brute force, dan penyalahgunaan sesi autentikasi. Oleh karena itu, penelitian ini bertujuan mengembangkan Zero Trust Login System (ZTLS) yang menerapkan verifikasi identitas berkelanjutan dan pengendalian akses adaptif berbasis risiko. Metode pengembangan yang digunakan adalah model Waterfall melalui tahapan analisis kebutuhan, perancangan, implementasi, pengujian, dan evaluasi. Sistem dirancang dengan mekanisme autentikasi berlapis yang mencakup validasi kredensial, verifikasi One-Time Password (OTP), serta dukungan Multi-Factor Authentication (MFA) berbasis aplikasi autentikator TOTP. Di sisi lain, DLM diterapkan untuk mengelola siklus hidup data pengguna melalui enam fase utama, yaitu penciptaan, penyimpanan, penggunaan, berbagi, pengarsipan, dan pemusnahan aman. Implementasi sistem menggunakan PHP dan MySQL serta dilengkapi enkripsi data, autentikasi berbasis token, otorisasi Role-Based Access Control (RBAC), security logging, dan pemulihan akun aman. Hasil pengujian menunjukkan bahwa penerapan ZTA mampu meningkatkan ketahanan sistem terhadap percobaan akses tidak sah, sementara DLM memastikan pengelolaan data yang terstruktur dan sesuai prinsip keamanan informasi. Penelitian ini memberikan kontribusi berupa kerangka implementasi keamanan login adaptif yang dapat diterapkan pada organisasi berskala menengah.Kata kunci: Zero Trust Architecture; Sistem Login Aman; Data Lifecycle Management; Keamanan Web; Multi-Factor Authentication; Abstract - This research proposes the design and implementation of a secure web-based login system using the principles of Zero Trust Architecture (ZTA) integrated with Data Lifecycle Management (DLM). Traditional perimeter-based security models are no longer reliable due to evolving cyber threats such as credential theft, phishing, and brute-force attacks. Therefore, this study aims to develop a Zero Trust Login System (ZTLS) that ensures continuous identity verification and strict access control. The system is developed using the Waterfall model through five stages: requirement analysis, system design, implementation, testing, and evaluation. The ZTA design combines multi-layer authentication mechanisms including credential validation, One-Time Password (OTP), and optional Multi-Factor Authentication (MFA) via TOTP-based authentication applications. Meanwhile, DLM is integrated to manage the lifecycle of user data across six stages: creation, storage, usage, sharing, archiving, and secure destruction. The implementation uses PHP and MySQL, equipped with encryption, RBAC authorization, token-based validation, and an account recovery mechanism. The results show that ZTA integration enhances system security by reducing unauthorized access attempts and providing adaptive authentication based on user context. DLM integration ensures structured and secure data governance throughout its lifecycle. Overall, this research contributes to the development of a practical reference model for medium-scale organizations to strengthen authentication security and data protection in web applications.Keywords: Zero Trust Architecture; Secure Login System; Data Lifecycle Management; Web Security; Multi-Factor Authentication;]]>
Copyrights © 2025
