cover
Contact Name
Bambang Sugiantoro
Contact Email
bambang.sugiantoro@uin-suka.ac.id
Phone
+6287880724907
Journal Mail Official
-
Editorial Address
Pusat Studi Cyber Security Sunan Kalijaga Fakultas Sains dan Teknologi UIN Sunan Kalijaga Jl. Marsda Adisucipto Yogyakarta 55281
Location
Kab. sleman,
Daerah istimewa yogyakarta
INDONESIA
Cyber Security dan Forensik Digital (CSFD)
ISSN : -     EISSN : 26158442     DOI : -
Core Subject : Science,
Cyber Security dan Forensik Digital (CSFD), published by Center of Cyber Security Sunan Kalijaga, Faculty of Science and Technology - UIN Sunan Kalijaga Yogyakarta. This journal published twice a year, May and November, in the fields of Cyber Security and Digital Forensics.
Articles 117 Documents
Analisis Forensik Digital Terhadap Kasus Phishing Pada Discord Mobile Menggunakan Metode OSCAR Zulki Yanto Rivai; Anton Yudhana; Imam Riadi
Cyber Security dan Forensik Digital Vol. 9 No. 1 (2026): Edisi Mei 2026
Publisher : Fakultas Sains dan Teknologi UIN Sunan Kalijaga Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.14421/csecurity.2026.9.1.5661

Abstract

Phishing merupakan bentuk kejahatan siber berbasis rekayasa sosial yang banyak memanfaatkan platform komunikasi digital, termasuk Discord Mobile. Penelitian ini bertujuan untuk menganalisis bukti digital pada kasus phishing di aplikasi Discord Mobile melalui penerapan metode OSCAR (Obtain, Strategize, Collect, Analyze, Report). Penelitian dilakukan menggunakan pendekatan eksperimental berupa simulasi skenario phishing pada perangkat Android yang telah di-root. Proses akuisisi dilakukan melalui teknik akuisisi fisik dengan memanfaatkan dua perangkat lunak forensik digital, yaitu Oxygen Forensic Detective dan Mobiledit Forensic Express. Artefak digital yang dianalisis meliputi komunikasi berbasis teks, tautan phishing, serta file media berupa gambar, video, dan dokumen PDF yang diekstraksi dari aplikasi Discord. Analisis difokuskan pada kemampuan masing-masing alat forensik dalam mengidentifikasi dan mengekstraksi artefak digital yang relevan dengan skenario kasus. Hasil penelitian menunjukkan bahwa Oxygen Forensic Detective memiliki tingkat efektivitas ekstraksi sebesar 86,3%, khususnya pada artefak komunikasi dan tautan phishing, sedangkan Mobiledit Forensic Express hanya mencapai efektivitas sebesar 18,1% namun lebih unggul dalam pemulihan file media. Perbedaan hasil tersebut dipengaruhi oleh kemampuan masing-masing alat dalam mengakses dan menganalisis struktur basis data aplikasi Discord. Penelitian ini menyimpulkan bahwa penerapan metode OSCAR dengan pendekatan multi-tool mampu meningkatkan kelengkapan dan keandalan hasil investigasi forensik digital pada kasus phishing di platform Discord Mobile. Kata kunci: Forensik Digital, Discord, Phishing, OSCAR, Mobiledit Forensic Express, Oxygen Forensic Detective  ---------------------------------------------------------------------- Digital Forensic Analysis of Phishing Cases on Discord Mobile using OSCAR Method Phishing is a form of cybercrime based on social engineering that is increasingly common on digital communication platforms, including Discord Mobile. This study aims to analyze digital evidence in phishing cases on the Discord Mobile application by applying the OSCAR (Obtain, Strategize, Collect, Analyze, Report) method. The research method was carried out through a simulation of a phishing case scenario on a rooted Android device, with physical acquisition using two digital forensic tools, namely Oxygen Forensic Detective and Mobiledit Forensic Express. The data analyzed included communication artifacts and digital media in the form of chats, phishing links, images, videos, and PDF documents obtained from the Discord application. The analysis process focused on the ability of each forensic tool to extract and identify digital artifacts relevant to the case scenario. The results of the study show that Oxygen Forensic Detective has a digital evidence extraction effectiveness rate of 86.3%, especially for text-based communication artifacts and phishing links, while Mobiledit Forensic Express only achieved an effectiveness rate of 18.1% and was superior in recovering media files such as images, videos, and documents. Each tool's ability to access and analyze the Discord application database influences this effectiveness difference. The conclusion of this study indicates that the application of the OSCAR method combined with a multi-tool approach can improve the completeness and reliability of digital forensic investigation results in phishing cases on the Discord Mobile platform.  Keywords: Digital  Forensic,  Discord,  Phishing, OSCAR, Mobiledit Forensic Express,  Oxygen Forensic Detective
Evaluasi Kesiapan Keamanan Informasi: Studi Kasus BAWASLU ABC Menggunakan Indeks KAMI Versi 5.0 Muhammad Tulus Akbar
Cyber Security dan Forensik Digital Vol. 9 No. 1 (2026): Edisi Mei 2026
Publisher : Fakultas Sains dan Teknologi UIN Sunan Kalijaga Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.14421/csecurity.2026.9.1.5709

Abstract

Keamanan informasi merupakan elemen vital yang berperan dalam Penyelenggara Sistem Elektronik (PSE). Indeks KAMI 5.0 tidak hanya sebagai pembaharuan dari versi yang tersedia sebelumnya tetapi mengedepankan terkait ancaman siber terkini, transformasi digital dan privasi pihak ketiga, selaras dengan regulasi peraturan perlindungan data pribadi. Evaluasi tingkat keamanan BAWASLU ABC mengacu kepada SNI ISO/IEC 27001:2022. Penilaian dilakukan pada tujuh kategori yaitu tata kelola keamanan informasi, pengelolaan risiko, kerangka kerja keamanan informasi, pengelolaan aset dan teknologi informasi, perlindungan data pribadi, serta suplemen terkait keterlibatan pihak ketiga. Metode yang digunakan adalah deskriptif evaluatif dengan cara pengumpulan data melalui tahap wawancara dan observasi berkas. Hasil temuan lapangan menunjukan kategori sistem elektronik menunjukan skor sebesar 14 dan masuk dalam kategori baik, pengelolaan risiko dengan skor 72 dan kerangka kerja keamanan informasi dengan skor 192 masuk dalam tingkat keamanan V yang berarti (Terkelola dan  Terukur). Sedangkan empat kategori lainnya berada pada tingkat keamanan III dan IV. Hasil ini menunjukan bahwa BAWASLU ABC telah mengadopsi struktur tata kelola keamanan informasi yang telah berkembang dengan baik dan konsisten, namun masih diperlukan peningkatan pada aspek pengelolaan aset informasi dan perlindungan data pribadi agar mencapai tingkat kematangan optimal sesuai standar SNI ISO/IEC 27001:2022. Kata kunci: Indeks KAMI, ISO/IEC 27001:2022, Penyelenggara Sistem Elektronik (PSE), Teknologi Informasi Komunikasi (TIK) ---------------------------------------------------------------------- Information Security Readiness Evaluation of BAWASLU ABC Using KAMI Index 5.0 Information security is a vital element in the implementation of Electronic System Providers (ESP). The KAMI Index version 5.0 is not merely an update of the previous version, but also addresses current cyber threats, digital transformation, and third-party privacy in alignment with personal data protection regulations. This study evaluates the level of information security at BAWASLU ABC with reference to the SNI ISO/IEC 27001:2022 standard. The assessment was conducted across seven categories, namely information security governance, risk management, information security framework, asset and information technology management, personal data protection, and supplementary aspects related to third-party involvement. A descriptive qualitative method was employed, with data collected through interviews and document observation. The findings indicate that the electronic system category achieved a score of 14 and was classified as good, while the risk management domain scored 72 and the information security framework scored 192, both reaching security maturity Level V (Managed and Measurable). The remaining four categories were at maturity Levels III and IV. Overall, the results demonstrate that BAWASLU ABC has adopted a well-developed and consistently implemented information security governance structure; however, improvements are still required in the areas of information asset management and personal data protection to achieve optimal maturity in accordance with the SNI ISO/IEC 27001:2022 standard. Keywords: Indeks KAMI, ISO/IEC 27001:2022, Information Security, Electronic System Operator (ESO), Information and Communication Technology (ICT)
Mitigasi Insider Threats Menggunakan Zero Trust Architecture (NIST SP 800-207) Pada Aplikasi Web Aldiansyah Reksa Pratama Wicaksono; Andy Victor Pakpahan
Cyber Security dan Forensik Digital Vol. 9 No. 1 (2026): Edisi Mei 2026
Publisher : Fakultas Sains dan Teknologi UIN Sunan Kalijaga Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.14421/csecurity.2026.9.1.5874

Abstract

Penerapan keamanan tradisional berbasis perimeter saat ini tidak lagi memadai untuk ancaman internal seperti lateral movement dan eskalasi hak akses. Hal ini disebabkan oleh model keamanan konvensional yang cenderung memberikan kepercayaan penuh terhadap entitas yang sudah berada di dalam jaringan. Penelitian ini bertujuan mengimplementasikan Zero Trust Architecture (ZTA) berbasis standar NIST SP 800-207 pada aplikasi web Laravel untuk meningkatkan kontrol akses. Metodologi yang digunakan meliputi pemodelan komponen ZTA (Policy Engine, Policy Administrator, dan Policy Enforcement Point) melalui integrasi Multi-Factor Authentication (MFA), Role-Based Access Control (RBAC), dan pencatatan log aktivitas. Proses pengembangan juga melibatkan konfigurasi middleware khusus pada Laravel untuk memastikan setiap permintaan akses diverifikasi secara ketat. Selain itu dilakukan simulasi serangan lateral movement dan privilege escalation untuk menguji ketahanan sistem. Hasil pengujian menunjukkan bahwa arsitektur yang dibangun mampu membatasi akses secara ketat berdasarkan identitas dan peran, serta berhasil memitigasi upaya pergerakan lateral dalam aplikasi. Simpulan dari penelitian ini menegaskan bahwa pendekatan "never trust, always verify" efektif dalam memperkuat keamanan aplikasi web, meskipun implementasi algoritma kepercayaan dinamis masih memerlukan pengembangan lebih lanjut sebagai kontribusi masa depan. Kata kunci: Zero Trust Architecture, NIST SP 800-207, Laravel, Lateral Movement, Keamanan Aplikasi Web  ---------------------------------------------------------------------- Mitigating Insider Threats Using Zero Trust Architecture (NIST SP 800-207) In Web Applications Traditional perimeter-based security applications are no longer sufficient to mitigate internal threats such as lateral movement and privilege escalation. This is due to conventional security models that tend to grant implied trust to entities already within the network. This study aims to implement Zero Trust Architecture (ZTA) based on the NIST SP 800-207 standard on a Laravel web application to enhance access control. The methodology involves modeling core ZTA components (Policy Engine, Policy Administrator, and Policy Enforcement Point) through the integration of Multi-Factor Authentication (MFA), Role-Based Access Control (RBAC), and comprehensive activity logging. The development process also involves configuring custom middleware in Laravel to ensure every access request is strictly verified. Furthermore, simulations of lateral movement and privilege escalation attacks were conducted to test system resilience. The results indicate that the constructed architecture is capable of strictly limiting access based on identity and roles, effectively mitigating lateral movement attempts within the application. This study concludes that the "never trust, always verify" approach is effective in strengthening web application security, although the implementation of dynamic trust algorithms remains a necessity for future development. Keywords: Zero Trust Architecture, NIST SP 800-207, Laravel, Lateral Movement, Web Application Security
Perbandingan Kinerja dan Efisiensi Full Fine-Tuning dan LoRA untuk Deteksi Email Phishing pada Model Transformer David S; Bambang Sugiantoro
Cyber Security dan Forensik Digital Vol. 9 No. 1 (2026): Edisi Mei 2026
Publisher : Fakultas Sains dan Teknologi UIN Sunan Kalijaga Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.14421/csecurity.2026.9.1.5903

Abstract

Serangan phishing merupakan ancaman keamanan siber yang terus berkembang dan semakin adaptif, sehingga pendekatan deteksi berbasis machine learning klasik menjadi kurang efektif. Model deep learning berbasis Transformer telah terbukti unggul dalam memahami semantik teks, namun penerapannya melalui skema full fine-tuning memerlukan sumber daya komputasi yang tinggi. Keterbatasan ini mendorong kebutuhan akan metode yang lebih efisien tanpa mengorbankan kinerja deteksi. Penelitian ini mengevaluasi efektivitas Parameter-Efficient Fine-Tuning (PEFT) menggunakan metode Low-Rank Adaptation (LoRA) untuk deteksi email phishing. Eksperimen dilakukan pada dataset publik yang terdiri dari 18.644 email dengan membandingkan lima arsitektur Transformer encoder, yaitu RoBERTa, BERT, ELECTRA, DeBERTa, dan DistilBERT. Evaluasi berfokus pada analisis trade-off antara kinerja klasifikasi, yang diukur menggunakan akurasi, presisi, recall, dan F1-score, serta efisiensi komputasi berdasarkan penggunaan VRAM dan waktu pelatihan. Hasil eksperimen menunjukkan bahwa LoRA mampu mempertahankan performa deteksi yang kompetitif dengan penurunan performa rata-rata kurang dari 1% dibandingkan full fine-tuning. BERT dengan full fine-tuning mencapai F1-score tertinggi sebesar 98,23%. Menariknya, pada DeBERTa, penerapan LoRA justru menghasilkan sedikit peningkatan performa hingga 98,13% dibandingkan versi full fine-tuning sebesar 98,02%, yang mengindikasikan efek regularisasi yang cukup efektif. Dari sisi efisiensi, LoRA mampu menurunkan konsumsi memori pada seluruh model, dengan penghematan tertinggi pada DistilBERT hingga 40%. Berdasarkan temuan ini, penggunaan full fine-tuning direkomendasikan jika prioritas utama adalah akurasi maksimal, sedangkan LoRA lebih sesuai untuk efisiensi memori. Kata kunci: deteksi phishing, Transformer, Low-Rank Adaptation (LoRA), efisiensi komputasi, keamanan siber  ---------------------------------------------------------------------- Comparison of Performance and Efficiency between Full Fine-Tuning and LoRA for Phishing Email Detection using Transformer Models Phishing attacks represent an evolving and increasingly adaptive cybersecurity threat, rendering classical machine learning-based detection approaches less effective. Transformer-based deep learning models have demonstrated superiority in comprehending textual semantics, but their training via full fine-tuning schemes demands substantial computational resources. These limitations necessitate more efficient methods that do not compromise detection performance. This study evaluates the effectiveness of Parameter-Efficient Fine-Tuning (PEFT) using the Low-Rank Adaptation (LoRA) method for phishing email detection. Experiments were conducted on a public dataset comprising 18,644 emails, comparing five Transformer encoder architectures: RoBERTa, BERT, ELECTRA, DeBERTa and DistilBERT. The evaluation focuses on analyzing the trade-off between classification performance, measured using accuracy, precision, recall, & F1-score, and computational efficiency based on VRAM usage and training time. Experimental results demonstrate that LoRA is capable of maintaining competitive detection performance with an average performance degradation of less than 1% compared to full fine-tuning. The BERT model with full fine-tuning achieved the highest F1-score of 98.23%. Notably, in DeBERTa, the application of LoRA yielded a slight performance improvement to 98.13% compared to the full fine-tuning version (98.02%), indicating an effective regularization effect. In terms of efficiency, LoRA reduced memory consumption across all models, with the highest saving observed in DistilBERT, reaching up to 40%. Based on these findings, the use of full fine-tuning is recommended if the primary priority is maximum accuracy, whereas LoRA is more suitable for memory efficiency. Keywords: phishing detection, Transformer, Low-Rank Adaptation (LoRA), computational efficiency, cybersecurity
Evaluasi Tingkat Keamanan Informasi Pada Pusat Teknologi Informasi Dan Pangkalan Data (PTIPD) Universitas Islam Negeri Sunan Kalijaga Berdasarkan Indeks KAMI Versi 4.2 Naufal Naufal Hafizh Mufafaq; Fiki Sanora; Bambang Sugiantoro
Cyber Security dan Forensik Digital Vol. 9 No. 1 (2026): Edisi Mei 2026
Publisher : Fakultas Sains dan Teknologi UIN Sunan Kalijaga Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.14421/csecurity.2026.9.1.5931

Abstract

Peningkatan ketergantungan terhadap teknologi informasi di lingkungan perguruan tinggi menimbulkan risiko keamanan yang memerlukan penilaian rutin untuk melindungi kerahasiaan, integritas, dan ketersediaan data. Penelitian ini bertujuan untuk menilai tingkat kematangan keamanan informasi di Pusat Teknologi Informasi dan Pangkalan Data (PTIPD) UIN Sunan Kalijaga dengan menggunakan instrumen Indeks Keamanan Informasi (KAMI) versi 4.2, yang didasarkan pada standar ISO/IEC 27001. Metode yang diterapkan adalah deskriptif kualitatif melalui wawancara dan kuesioner untuk mengukur lima domain utama keamanan informasi beserta aspek tambahannya. Hasil penilaian menunjukkan bahwa sistem elektronik institusi tersebut termasuk dalam kategori ketergantungan yang "Tinggi". Secara umum, tingkat keamanan informasi mencapai predikat "Baik" dengan skor total 635. Tingkat kematangan pada area yang dievaluasi berkisar antara Level III hingga V, di mana Tata Kelola (Level IV), Pengelolaan Risiko (Level V), dan Kerangka Kerja (Level V) telah diimplementasikan secara komprehensif. Akan tetapi, Pengelolaan Aset serta Teknologi dan Keamanan Informasi masih berada pada Level III (Diterapkan Sebagian). Penilaian terhadap aspek tambahan menunjukkan hasil yang sangat memuaskan, khususnya dalam pengamanan layanan infrastruktur awan yang mencapai 100%. Kesimpulannya, PTIPD UIN Sunan Kalijaga telah memenuhi standar keamanan informasi minimum, tetapi memerlukan perhatian lebih besar pada aspek teknologi dan pengelolaan aset. Kata kunci: Indeks KAMI, PTIPD, keamanan informasi, ISO/IEC 27001, evaluasi keamanan.  ---------------------------------------------------------------------- Evaluation Of Information Security Levels At The Information Technology And Data Center (PTIPD) Of Sunan Kalijaga State Islamic University Yogyakarta Based On KAMI Index Version 4.2 Increased dependence on information technology in higher education environments poses security risks that require regular assessment to protect the confidentiality, integrity, and availability of data. This study aims to assess the level of information security maturity at the Information and Data Technology Center (PTIPD) of Sunan Kalijaga State Islamic University Yogyakarta using the Information Security Index (KAMI) version 4.2 instrument, which is based on the ISO/IEC 27001 standard. The method used is descriptive qualitative through interviews and questionnaires to measure the five main domains of information security and other additional aspects. The assessment results show that the institution's electronic system is in the “High” category in terms of dependence. In general, the level of information security achieved a rating of “Good” with a total score of 635. The maturity level in the areas evaluated ranged from Level III to V, where Governance (Level IV), Risk Management (Level V), and Framework (Level V) have been comprehensively implemented. However, Asset Management and Information Technology and Security are still at Level III (Partially Implemented). The assessment of additional aspects shows very satisfactory results, particularly in securing cloud infrastructure services, which reached 100%. In conclusion, PTIPD UIN Sunan Kalijaga has met the minimum information security standards but requires greater attention to technology and asset management aspects. Keywords: KAMI Index, PTIPD, information security, ISO/IEC 27001, security evaluation
Deteksi Dini Indikasi Risiko Keamanan Siber pada Game Online Berdasarkan Ulasan Pengguna Menggunakan Naive Bayes jely estianti; RG Guntur Alam; Agung Kharisma Hidayah
Cyber Security dan Forensik Digital Vol. 9 No. 1 (2026): Edisi Mei 2026
Publisher : Fakultas Sains dan Teknologi UIN Sunan Kalijaga Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.14421/csecurity.2026.9.1.6034

Abstract

Game online merupakan platform digital yang mengelola data sensitif pengguna, termasuk informasi akun, data pribadi, dan transaksi digital, sehingga rentan terhadap berbagai ancaman keamanan siber. Sebagian besar penelitian sebelumnya memanfaatkan ulasan pengguna untuk analisis sentimen dan kualitas layanan, sementara pemanfaatannya sebagai indikator dini risiko keamanan siber masih terbatas. Penelitian ini bertujuan mengidentifikasi indikasi risiko keamanan siber pada game online berdasarkan ulasan pengguna sebagai bentuk user-reported cybersecurity signals. Sebanyak 3.069 ulasan pengguna Mobile Legends diproses melalui tahapan text mining (case folding, tokenizing, stopword removal, dan stemming), direpresentasikan menggunakan pembobotan TF-IDF, dan diklasifikasikan dengan algoritma Naïve Bayes. Kategori risiko meliputi Account Security Risk, Data Privacy Risk, Phishing & Fraud Risk, Malware Risk, serta Non-Security Issue. Evaluasi menggunakan skenario pembagian data 80:20 menunjukkan akurasi keseluruhan sebesar 76,5% berdasarkan confusion matrix, dengan variasi performa antar kategori. F1-score tertinggi diperoleh pada kategori Non-Security Issue (0,92), sedangkan Malware Risk terendah (0,67) akibat ambiguitas linguistik dalam narasi pengguna. Temuan ini menunjukkan bahwa ulasan pengguna berpotensi dimanfaatkan sebagai mekanisme deteksi dini berbasis komunitas. Secara teoretis, penelitian ini memperkenalkan pendekatan community-based cyber risk identification sebagai bentuk komplementer terhadap mekanisme deteksi teknis dalam manajemen risiko keamanan siber pada platform digital.  Kata kunci: keamanan siber, game online, text mining, naïve bayes, deteksi dini risiko  ---------------------------------------------------------------------- Early Detection of Cybersecurity Risk Indications in Online Games Based on User Reviews Using Naive Bayes Online games are digital platforms that manage sensitive user data, including account information, personal data, and digital transactions, making them vulnerable to various cybersecurity threats. Most previous studies have utilized user reviews for sentiment analysis and service quality evaluation, while their use as early indicators of cybersecurity risk remains limited. This study aims to identify indications of cybersecurity risks in online games based on user reviews as user-reported cybersecurity signals. A total of 3,069 user reviews of Mobile Legends were processed using text mining techniques, including case folding, tokenizing, stopword removal, and stemming. The textual data were represented using TF-IDF weighting and classified using the Naïve Bayes algorithm. The risk categories included Account Security Risk, Data Privacy Risk, Phishing & Fraud Risk, Malware Risk, and Non-Security Issue. Evaluation using an 80:20 data split scenario resulted in an overall accuracy of 76.5% based on the confusion matrix, with performance variations across categories. The highest F1-score was achieved in the Non-Security Issue category (0.92), while the Malware Risk category showed the lowest performance (0.67) due to linguistic ambiguity in user narratives. These findings indicate that user reviews have the potential to serve as a community-based early detection mechanism for cybersecurity risks. Theoretically, this study introduces a community-based cyber risk identification approach as a complementary mechanism to technical detection systems in cybersecurity risk management for digital platforms. Keywords: cybersecurity; online games, text mining, naïve bayes, early risk detection
Analisis Statik Keamanan Aplikasi Micro-Drama Berbasis Android Menggunakan Mobile Security Framework (MOBFS) Fransiskus Panca Juniawan; Dwi Yuny Sylfania
Cyber Security dan Forensik Digital Vol. 9 No. 1 (2026): Edisi Mei 2026
Publisher : Fakultas Sains dan Teknologi UIN Sunan Kalijaga Yogyakarta

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.14421/csecurity.2026.9.1.6247

Abstract

Pertumbuhan pesat aplikasi dengan konsep micro-drama berbasis android memberikan pengalaman baru bagi pengguna dalam menonton video berdurasi singkat dengan mode portrait, sehingga meningkatkan kenyamanan dalam mengakses konten digital tersebut. Saat ini telah tersedia banyak aplikasi micro-drama yang dapat dipilih pengguna sesuai preferensi personal sehingga berdampak pada peningkatan penggunaan secara masif sehingga berdampak pula pada pendapatan keuangannya. Namun, aplikasi favorit juga dapat menjadi sasaran bagi penyerang untuk dapat dieksploitasi kelemahannya, seperti penggunaan izin berlebihan, kelemahan konfigurasi kriptografi, penyimpanan data sensitif yang tidak aman, serta potensi kebocoran informasi masih kerap ditemukan pada aplikasi pihak ketiga yang beredar luas di toko aplikasi resmi. Penelitian ini bertujuan untuk menganalisis tingkat keamanan tiga aplikasi micro-drama terbaik berbasis android pada Play Store menggunakan pendekatan Static Application Security Testing (SAST) dengan tool Mobile Security Framework (MobSF). Metodologi penelitian terdiri dari lima tahapan meliputi penentuan kebutuhan aplikasi, instalasi MobSF, pengujian dan pengambilan data uji berdasar lima kriteria, analisis hasil temuan serta rekomendasi kepada pengembang dan pengguna. Hasil analisis menunjukkan bahwa ketiga aplikasi memiliki pola kerentanan yang mirip, namun dengan jumlah yang berbeda. Kerentanan pada kriteria weak crypto menunjukkan bahwa ketiga aplikasi masih memiliki high severity, terutama DramaBox dengan 6 temuan. Pada kategori dangerous permissions, masih ditemukan permission dengan klasifikasi dangerous pada ketiga aplikasi, terutama FreeReels dengan 5 temuan. Pada kategori Domain Malware Check memiliki persentase 100%. Sebaliknya, untuk kategori SSL Bypass serta Root Detection, ketiga aplikasi telah memenuhi seluruh standar keamanan pengujian sehingga memiliki hasil analisis yang baik. Selanjutnya dijabarkan rekomendasi kepada pengembang aplikasi berdasarkan hasil analisis statik secara keseluruhan, serta rekomendasi kepada pengguna dengan tujuan agar pengguna aplikasi micro-drama dapat memahami resiko terbesar dari celah keamanan yang ada pada aplikasi. Kebaruan dari penelitian ini adalah adanya pembahasan serta analisis mendalam mengenai issue kerentanan yang ditemukan, mulai dari penyebab, resiko, dampak, hingga skenario nyata yang dapat terjadi pada pengguna aplikasi micro-drama. Kata kunci: Static Application Security Testing (SAST), Mobile Security Framework (MobSF), Aplikasi Micro-Drama, Weak Crypto, SSL Bypass, Dangerous Permissions, Root Detection, Domain Malware Check  ---------------------------------------------------------------------- Static Security Analysis Of Android-Based Micro-Drama Application Using Mobile Security Framework (MOBFS) The rapid growth of Android-based micro-drama applications provides a new experience for users in watching short videos in portrait mode, thus increasing the convenience in accessing digital content. Currently, there are many micro-drama applications available for users to choose according to their personal preferences, resulting in a massive increase in usage and thus impacting their financial income. However, favorite applications may be targets for attackers to exploit their vulnerabilities, such as excessive use of permissions, cryptographic configuration weaknesses, insecure storage of sensitive data, and the potential for information leaks are still often found in third-party applications widely circulated in official application stores. This study aims to analyze the security level of the best three of Android-based micro-drama applications on the Play Store using the Static Application Security Testing (SAST) approach with the Mobile Security Framework (MobSF) tool. The research methodology consists of five stages including determining application requirements, installing MobSF, testing and collecting test data based on five criteria, analyzing the findings, and making recommendations to developers and the users. The analysis results show that the three applications have similar vulnerability patterns, but with different numbers. Vulnerabilities in the weak crypto criteria indicate that all three applications still have a high severity, especially DramaBox with 6 findings. In the Dangerous permissions category, permissions classified as dangerous were still found in all three applications, especially FreeReels with 5 findings. In the Domain Malware Check category, the percentage was 100%. Conversely, for the SSL Bypass and Root Detection categories, all three applications met all security testing standards, resulting in good analysis results. Furthermore, recommendations are outlined for application developers based on the overall static analysis results, as well as recommendations for users with the aim of helping micro-drama application users understand the greatest risks from security vulnerabilities in the application. The novelty of this research is the in-depth discussion and analysis of the vulnerability issues found, starting from the causes, risks, impacts, and real-life scenarios that could occur to micro-drama application users. Keywords: Static Application Security Testing (SAST), Mobile Security Framework (MobSF), Micro-Drama Application, Weak Crypto, SSL Bypass, Dangerous Permissions, Root Detection, Domain Malware Check

Page 12 of 12 | Total Record : 117