STUDI KOMPARASI KINERJA DAN KEAMANAN JSON WEB TOKEN (JWT) DAN PLATFORM AGNOSTIC SECURITY TOKENS (PASETO) PADA RESTful API APLIKASI PASAR MURAH

Ejah Said Mansur, NIM.: 22206051012 (2025) STUDI KOMPARASI KINERJA DAN KEAMANAN JSON WEB TOKEN (JWT) DAN PLATFORM AGNOSTIC SECURITY TOKENS (PASETO) PADA RESTful API APLIKASI PASAR MURAH. Masters thesis, UIN SUNAN KALIJAGA YOGYAKARTA.

[img]
Preview
 Text (STUDI KOMPARASI KINERJA DAN KEAMANAN JSON WEB TOKEN (JWT) DAN PLATFORM AGNOSTIC SECURITY TOKENS (PASETO) PADA RESTful API APLIKASI PASAR MURAH)
22206051012_BAB-I_IV-atau-V_DAFTAR-PUSTAKA.pdf - Published Version
Download (6MB) | Preview
[img] Text (STUDI KOMPARASI KINERJA DAN KEAMANAN JSON WEB TOKEN (JWT) DAN PLATFORM AGNOSTIC SECURITY TOKENS (PASETO) PADA RESTful API APLIKASI PASAR MURAH)
22206051012_BAB-II_sampai_SEBELUM-BAB-TERAKHIR.pdf - Published Version
Restricted to Registered users only
Download (9MB) | Request a copy

Abstract

Authentication is a crucial aspect in maintaining the security of user data within a system. This study aims to compare two authentication protocols, JSON Web Token (JWT) and Platform Agnostic Security Tokens (PASETO), implemented on the RESTful API of the Pasar Murah Application. The research method uses a quantitative approach by conducting performance and security testing for each protocol. The test results show that JWT has better performance than PASETO. The average token generation time for JWT is recorded at 1.68 ms, while PASETO requires 2.35 ms. The token transfer time for JWT is 31.62 ms, while PASETO takes 35.94 ms. In terms of size, the JWT token is 809 bytes, whereas the PASETO token is slightly larger at 839 bytes. However, in terms of security, PASETO demonstrates greater strength. Based on the security testing results, the JWT token is considered secure against several types of attacks listed in the Top 3 OWASP API Security 2023, such as Broken Authentication, Broken Object Level Authorization , Broken Object Property Level Authorization. However, JWT remains vulnerable to Broken User Authentication threats. In contrast, PASETO shows stronger resistance, successfully withstanding all three types of attacks without exposing any vulnerabilities.

Item Type: Thesis (Masters)
Additional Information / Supervisor: Dr. Bambang Sugiantoro, S.Si., M.T.
Uncontrolled Keywords: RESTful, API, JWT, PASETO
Subjects: 000 Ilmu Komputer, Ilmu Informasi, dan Karya Umum > 000 Karya Umum > 005.8 Keamanan Komputer, Keamanan Data
Divisions: Fakultas Sains dan Teknologi > Informatika (S2)
Depositing User: Muh Khabib, SIP.
Date Deposited: 16 Sep 2025 14:19
Last Modified: 16 Sep 2025 14:19
URI: http://digilib.uin-suka.ac.id/id/eprint/72935

Share this knowledge with your friends :

Actions (login required)

View Item View Item
Chat Kak Imum
Link Terkait
Media Sosial
Perpustakaan
UIN Sunan Kalijaga Yogyakarta

Jl. Laksda Adisucipto, Papringan, Caturtunggal, Kec. Depok, Kabupaten Sleman, Daerah Istimewa Yogyakarta 55281 Indonesia

lib@uin-suka.ac.id

(0274) 548-635

This site is powered by EPrints 3, free software developed by the University of Southampton.
Copyright © 2019 Institutional Repository UIN Sunan Kalijaga Yogyakarta . All rights reserved. Designed by Miftahul Ulum & Library IT Team