Detection and Prevention of Insecure Direct Object References (IDOR) in Website-Based Applications
Deteksi dan Pencegahan Insecure Direct Object References (IDOR) Pada Aplikasi Berbasis Website
DOI:
https://doi.org/10.21070/ups.1346Keywords:
Website, Insecure Direct Object References (IDOR), Website securityAbstract
The development of information technology, especially in the use of websites, is also followed by increasing website security vulnerabilities, such as Insecure Direct Object References (IDOR). IDOR is a security vulnerability that is often abused by attackers to access and modify data on insecure websites. This study aims to avoid or overcome IDOR's security vulnerabilities by creating a test web as research material. With this research it is hoped that it can provide solutions to improve website security so that it is not easily misused by attackers
Downloads
References
Simarmata, J., Chaerul, M., Mukti, R. C., Purba, D. W., Tamrin, A. F., Jamaludin, J., ... & Meganingratna, A. (2020). Teknologi Informasi: Aplikasi dan Penerapannya. Yayasan Kita Menulis.
Primawanti, E. P., & Ali, H. (2022). Pengaruh Teknologi Informasi, Sistem Informasi Berbasis Web Dan Knowledge Management Terhadap Kinerja Karyawan (Literature Review Executive Support Sistem (Ess) for Business). Jurnal Ekonomi Manajemen Sistem Informasi, 3(3), 267-285.
Guntoro, G., Costaner, L., & Musfawati, M. (2020). Analisis Keamanan Web Server Open Journal System (Ojs) Menggunakan Metode Issaf Dan Owasp (Studi Kasus Ojs Universitas Lancang Kuning). JIPI (Jurnal Ilmiah Penelitian Dan Pembelajaran Informatika), 5(1), 45-55.
Demesa, E. G. (2018). Implementation of a Hands-on Attack and Defense Lab on Insecure Direct Object References Master ’ s thesis. https://www.etis.ee/Portal/Mentorships/Display/57461a3c-f3aa-40f8-a9e3-05a76e074551.
Kuncoro, A. W. (2022). Pengujian Autentikasi Dan Otorisasi Web Mi-Gateway Uii Berdasarkan Dokumen Owasp Wstg V4. 2.
Novendri, M. S., Saputra, A., & Firman, C. E. (2019). Aplikasi Inventaris Barang Pada Mts Nurul Islam Dumai Menggunakan Php Dan Mysql. lentera dumai, 10(2).
Putri, S. E. Y. (2021). Penerapan Model Naive Bayes Untuk Memprediksi Potensi Pendaftaran Siswa Di Smk Taman Siswa Teluk Betung Berbasis Web. Journal of Engineering, Computer Science and Information Technology (JECSIT), 1(1).
Kinaswara, T. A. (2019, October). Rancang Bangun Aplikasi Inventaris Berbasis Website pada Kelurahan Bantengan. In Prosiding Seminar Nasional Teknologi Informasi dan Komunikasi (SENATIK) (Vol. 2, No. 1, pp. 71-75).
Downloads
Additional Files
Posted
License
Copyright (c) 2023 UMSIDA Preprints Server
This work is licensed under a Creative Commons Attribution 4.0 International License.
