Penerapan Keamanan Server Menggunakan Security Information Event And Management Pada Sistem Operasi Ubuntu Server

Ikhsan, Maulana Alhif and , Ir. Bana Handaga, M.T., Ph.D. (2023) Penerapan Keamanan Server Menggunakan Security Information Event And Management Pada Sistem Operasi Ubuntu Server. Skripsi thesis, Universitas Muhammadiyah Surakarta.

BACA FULLTEXT
[img] PDF (Naskah Publikasi)
Final_3_Naskah Publikasi_L200180120_Maulana Alhif Ikhsan_Revisi 3.pdf
Download (650kB)
[img] PDF (Surat Pernyataan Publikasi)
surat pernyataan publikasi (16).pdf
Restricted to Repository staff only
Download (118kB) | Request a copy

Abstract

Along with the development of technology that requires security on server devices is an obligation that must be considered. In an effort to protect a server contained in the Arhanud 14/PWY Cirebon Battalion, it is not enough to only use hardening techniques on the device. Referring to a security framework such as NIST, there are 5 things that need attention: identify, protect, detect, respond, and recover. The Arhanud 14/PWY Cirebon Battalion only applied for protection by using hardening techniques on server devices. Lack of monitoring on server devices causes suspicious activity caused by internal or external factors. The effort to deal with this problem is to apply SIEM (Security Information Event and Management) technology in which the IDS (Intrusion Detection System) method functions as a real-time threat detector on server devices with the Ubuntu Server operating system. This study uses ELK (Elasticsearch, Logstash, Kibana) and Auditbeat, which are devices that can perform log management with visualization to make analysis easier. This test was carried out by focusing on attacks on SSH and FTP services. The testing process uses the Brute Force method. This experimental research method includes identification, needs analysis, design, implementation, testing, and evaluation. Based on the test results from the application of this study, SIEM can detect attacks that have been carried out in the testing process such as SSH and FTP services through log files and visualized by Kibana in real-time.

Item Type: Thesis (Skripsi)
Uncontrolled Keywords: SIEM, Elasticsearch, Logstash, Kibana, Server, Ubuntu.
Subjects: T Technology > TZ Technical Information
Divisions: Fakultas Ilmu Komunikasi dan Informatika > Teknik Informatika
Depositing User: MAULANA ALHIF IKHSAN
Date Deposited: 03 Nov 2023 00:49
Last Modified: 03 Nov 2023 00:49
URI: http://eprints.ums.ac.id/id/eprint/117720

Actions (login required)

View Item View Item
UMS ETD-db is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.