PENERAPAN IDS DAN ANALISIS KEAMANAN PADA JARINGAN PUBLIC CLOUD MENGGUNAKAN ROUTEROS DAN ALERT NOTIFICATION DENGAN INSTANT MESSAGING

Prabowo, Ekky Rega (2021) PENERAPAN IDS DAN ANALISIS KEAMANAN PADA JARINGAN PUBLIC CLOUD MENGGUNAKAN ROUTEROS DAN ALERT NOTIFICATION DENGAN INSTANT MESSAGING. S2 thesis, Universitas Mercu Buana - Menteng.

[img] Text (COVER)
55417110017-EKKY REGA PRABOWO-01 Cover - ekky rega prabowo.pdf
Download (2MB)
[img] Text (BAB I)
55417110017-EKKY REGA PRABOWO-02 Bab 1 - ekky rega prabowo.pdf
Restricted to Registered users only
Download (204kB)
[img] Text (BAB II)
55417110017-EKKY REGA PRABOWO-03 Bab 2 - ekky rega prabowo.pdf
Restricted to Registered users only
Download (166kB)
[img] Text (BAB III)
55417110017-EKKY REGA PRABOWO-04 Bab 3 - ekky rega prabowo.pdf
Restricted to Registered users only
Download (202kB)
[img] Text (BAB IV)
55417110017-EKKY REGA PRABOWO-05 Bab 4 - ekky rega prabowo.pdf
Restricted to Registered users only
Download (723kB)
[img] Text (BAB V)
55417110017-EKKY REGA PRABOWO-06 Bab 5 - ekky rega prabowo.pdf
Restricted to Registered users only
Download (38kB)
[img] Text (DAFTAR PUSTAKA)
55417110017-EKKY REGA PRABOWO-08 Daftar Pustaka - ekky rega prabowo.pdf
Restricted to Registered users only
Download (106kB)
[img] Text (LAMPIRAN)
55417110017-EKKY REGA PRABOWO-09 Lampiran - ekky rega prabowo.pdf
Restricted to Registered users only
Download (181kB)

Abstract

Serangan Siber merupakan ancaman yang serius bagi keamanan jaringan, terutama pada jaringan public cloud karena bisa diakses oleh siapapun dari seluruh dunia. Akibat dari serangan siber berdampak besar jika attacker berhasil mengganggu suatu kinerja jaringan bahkan hingga bisa menguasainya, terutama pada jaringan yang menyediakan layanan bagi public. Seorang sysadmin jaringan harus siap tanggap dalam menangani setiap serangan pada server yang dikelolanya. Tahap pertama dalam mencegah serangan yang mengancam suatu jaringan public cloud yaitu dengan merancang sistem untuk mendeteksi dan memberikan peringatan dini akan suatu serangan yang dinamakan Intrusion Detection System (IDS). Aplikasi yang digunakan sebagai IDS yaitu RouterOS yang berfungsi untuk mendeteksi serangan berdasarkan rules yang dicocokkan dengan signature dari serangan tersebut, kemudian akan disimpan ke database untuk diteruskan kepada sysadmin. Hasil dari penggunaan IDS dengan notifikasi melalui instant messaging menggunakan system API mampu mendeteksi serangan ICMP Flooding, Port Scanning, dan HttpFlooding berdasarkan rules yang telah dikonfigurasi pada RouterOS. Berdasarkan hasil analisis respon waktu pengiriman notifikasi yang dilakukan dalam 10x percobaan dari setiap serangan didapatkan hasil rata-rata sebagai berikut ICMP Flooding 21.5 detik, Port Scanning 26 detik, dan HTTP Flooding 29.8 detik, response ini sesuai dengan standard ISO 27001:2013-point A.13.1.1 NetworkControls, dimana IDS dan alert notification mendeteksi serta memberikan peringatan valid dan realtime. Hal ini diharapkan dapat membantu sysadmin untuk melakukan next action penanganan terhadap ancaman pada jaringan di public cloud.. Cyber attacks are a serious threat to network security, especially on public cloud that can be accessed by anyone from all over the world. As a result of cyber attack is very big impact if it successfully disrupt a network performance even to take over the server, especially on networks that provide public service. A sysadmins must be responsive in handling any attacks on the server they manage. The first step in preventing attacks that can threaten a network public cloud is by designing a system to detect and provide early warning of an attack called Intrusion Detection System (IDS). The application used as IDS is RouterOS that serves to detect attacks based on rules that will be matched with the signature of the attack, and will be saved to the database to be forwarded to the sysadmins via instant messaging. The results of using IDS with notifications via instant messaging bot using system API, capable of detecting ICMP Flooding, Port Scanning, and HttpFlooding based on rules configured on RouterOS. Based on the results of the analysis of the response time for send notifications carried out in 10 attempts from each attack, the following average results are ICMP Flooding 21.5 seconds, Port Scanning 26 seconds, and HTTP Flooding 29.8 seconds, this response following ISO standard 27001:2013-point A.13.1.1 NetworkControls, where IDS and alert notification detect and provide valid and realtime warnings. This is expected to help sysadmin perform the next action handling against threats on the public cloud network.

Item Type: Thesis (S2)
NIM/NIDN Creators: 55417110017
Uncontrolled Keywords: Security, Intrusion detection system, RouterOS, Public Cloud, Instant Messaging Keamanan, Intrusion detection sistem, RouterOS, Public Cloud, Instant Messaging
Subjects: 600 Technology/Teknologi > 620 Engineering and Applied Operations/Ilmu Teknik dan operasi Terapan > 621 Applied Physics/Fisika terapan > 621.3 Electrical Engineering, Lighting, Superconductivity, Magnetic Engineering, Applied Optics, Paraphotic Technology, Electronics Communications Engineering, Computers/Teknik Elektro, Pencahayaan, Superkonduktivitas, Teknik Magnetik, Optik Terapan, Tekn
Divisions: Pascasarjana > Magister Teknik Elektro
Depositing User: OKTAFIYANI AZ ZAHRO
Date Deposited: 03 May 2025 03:16
Last Modified: 03 May 2025 03:16
URI: http://repository.mercubuana.ac.id/id/eprint/95363

Actions (login required)

View Item View Item
UMB Repository is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.