Information System Security Analysis to Determine Server Security Vulnerability with Penetration Testing Execution Standard (PTES) Method at VWX University
{"title":"Information System Security Analysis to Determine Server Security Vulnerability with Penetration Testing Execution Standard (PTES) Method at VWX University","authors":"Alvita Izana Kusumarini, H. Seta","doi":"10.1109/ICIMCIS53775.2021.9699285","DOIUrl":null,"url":null,"abstract":"Server security is indispensable as part of the protection and prevention of information theft measures. This aspect ignored by some agencies that already feel safe with the security conditions of the server network owned by installing antivirus or firewall on the server. There are still considerable agencies such as universities that constantly have not tightened the security of information on the server. Therefore, penetration testing required to determine vulnerabilities in the server by using Penetration Testing Execution Standard (PTES) method to find security gaps in an agency in this case, namely employee data servers at VWX University were in this research found vulnerabilities involves Cross-Site Tracing (CST) attacks, Sensitive Data Exposure, Password Guessing, DDoS Attack, and Sniffing activities that inflict access to the server system.","PeriodicalId":250460,"journal":{"name":"2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS","volume":"63 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-10-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 International Conference on Informatics, Multimedia, Cyber and Information System (ICIMCIS","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICIMCIS53775.2021.9699285","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
Server security is indispensable as part of the protection and prevention of information theft measures. This aspect ignored by some agencies that already feel safe with the security conditions of the server network owned by installing antivirus or firewall on the server. There are still considerable agencies such as universities that constantly have not tightened the security of information on the server. Therefore, penetration testing required to determine vulnerabilities in the server by using Penetration Testing Execution Standard (PTES) method to find security gaps in an agency in this case, namely employee data servers at VWX University were in this research found vulnerabilities involves Cross-Site Tracing (CST) attacks, Sensitive Data Exposure, Password Guessing, DDoS Attack, and Sniffing activities that inflict access to the server system.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
