DIGITAL FORENSIC READINESS INFORMATION SYSTEM FOR EJBCA DIGITAL SIGNATURE WEB SERVER
Due to the nature of the website, the EJBCA digital signature have vulnerabilities. A list of web-based vulnerabilities can be found in OWASP's Top 10 2021 survey. For this reason, it is necessary to anticipate attacks with effective and efficient forensic applications. The concept of digita...
Saved in:
| Main Author: | |
|---|---|
| Format: | Final Project |
| Language: | Indonesia |
| Online Access: | https://digilib.itb.ac.id/gdl/view/70149 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Institut Teknologi Bandung |
| Language: | Indonesia |
| Summary: | Due to the nature of the website, the EJBCA digital signature have vulnerabilities. A
list of web-based vulnerabilities can be found in OWASP's Top 10 2021 survey. For
this reason, it is necessary to anticipate attacks with effective and efficient forensic
applications. The concept of digital forensic readiness can be applied as a pre-incident
plan for forensic process. Managing digital evidence in the pre-incident plan includes
data collection, data examination, data analysis, and findings report. Based on this
concept, we implemented it by designing an information system that runs the entire
flow, providing collection of attack evidence, visualization of attack statistics in
executive summary, mitigation recommendations, and generation of physical forensic
reports when needed. This research offers an information system that can help digital
forensics processes and maintain the integrity of the EJBCA digital signature
web server. |
|---|