eprintid: 47013 rev_number: 10 eprint_status: archive userid: 12259 dir: disk0/00/04/70/13 datestamp: 2021-11-19 03:20:50 lastmod: 2021-11-19 03:20:50 status_changed: 2021-11-19 03:20:50 type: thesis metadata_visibility: show creators_name: Muhammad Ghifari Abdillah, NIM. 17106050013 title: ANALISIS KEAMANAN SISTEM INFORMASI PERPUSTAKAAN KABUPATEN BLORA BERDASARKAN STANDAR ISO 27001:2013 ispublished: pub subjects: TB divisions: jur_tinf full_text_status: restricted keywords: Security Audit, ISO 27001: 2013, Maturity Level, Penetration Testing. note: Dr. Ir. Bambang Sugiantoro, S.Si., M.T., abstract: The rapid development of technology makes threats to information systems increasing. Management and service performance can be disrupted if there are problems related to information security. The Blora Regency Library as a public service, using information technology as a convenience in its services, of course stores important data and information related to data on books and member data. Avoiding misuse and theft of data and information, this study aims to analyze system security based on ISO/IEC 27001:2013 which is a standard for managing information security management systems and penetration testing as a testing tool on systems for security vulnerabilities. Analysis based on questionnaire data from audit implementation based on ISO/IEC 27001:2013 on information security management in Blora Regency Library and analysis based on system testing results using penetration testing. The audit results show that the maturity level of Blora Regency Library management is on a scale of 2.98 and is at maturity level 2 (Managed) which means that existing projects have been planned, carried out, measured, and controlled. And for planning and performance measurement is done in an almost standard way. While the results of penetration testing on the information system of the Blora Regency Library, found 14 open ports scanned using Nmap, OWASP ZAP found 13 vulnerabilities. Uniscan found 6 Blind SQL Injection and 3 Cross-site Scripting. SQL injection exploitation and Cross-Site Scripting attacks did not penetrate the system. Ettercap failed to read the data packets from the login attempt but Wireshark can easily read the data. date: 2021-08-18 date_type: published pages: 228 institution: UIN SUNAN KALIJAGA YOGYAKARTA department: FAKULTAS SIANS DAN TEKNOLOGI thesis_type: skripsi thesis_name: other citation: Muhammad Ghifari Abdillah, NIM. 17106050013 (2021) ANALISIS KEAMANAN SISTEM INFORMASI PERPUSTAKAAN KABUPATEN BLORA BERDASARKAN STANDAR ISO 27001:2013. Skripsi thesis, UIN SUNAN KALIJAGA YOGYAKARTA. document_url: https://digilib.uin-suka.ac.id/id/eprint/47013/1/17106050013_BAB-I_IV-atau-V_DAFTAR-PUSTAKA.pdf document_url: https://digilib.uin-suka.ac.id/id/eprint/47013/2/17106050013_BAB-II_sampai_SEBELUM-BAB-TERAKHIR.pdf