IMPLEMENTASI ZTA PADA WEBSITE ASPIRASI KAMPUS

Authors

  • AHMAD AL-HAFIZ Universitas Negeri Medan

DOI:

https://doi.org/10.23960/jitet.v14i1.8250

Abstract Views: 22 File Views: 10

Keywords:

Zero Trust Architecture, Keamanan Data, Autentikasi Ganda, CAPTCHA, Portal Aspirasi Kampus.

Abstract

Penelitian ini bertujuan untuk mengimplementasikan konsep Zero Trust Architecture (ZTA) pada Website Portal Aspirasi Kampus merupakan langkah tepat untuk peningkatan level keamanan data, terutama keamanan data mahasiswa dalam pengiriman pesan kritik, saran, atau keluhan. Nesting dalam ZTA menjamin bahwa seluruh proses autentikasi tidak langsung tidak boleh dipercaya dan harus lolos melalui lapisan verifikasi. Adapun metode yang digunakan dalam penelitian ini adalah metode pengembangan sistem multi-layered security yang terbagi menjadi analisis kebutuhan, perancangan sistem, implementasi, dan pengujian sistem. Sistem diimplementasikan menggunakan bahasa pemrograman PHP dan database MySQL dengan integrasi lapisan keamanan sesuai dengan prinsip ZTA. Dari hasil implementasi yang telah dilakukan, sistem mampu menolak akses ilegal, mengunci akun setelah tiga kali gagal login, serta mengakhiri sesi otomatis setelah sepuluh menit idle. Konsep ZTA telah berhasil diterapkan guna memperkuat level keamanan dan menjaga integritas data pengguna. Dampak positif yang dihasilkan adalah mahasiswa dapat menyampaikan aspirasi secara aman dan kampus dapat menindaklanjuti pengaduan mahasiswa dengan transparan dan efisien.

Downloads

Download data is not yet available.

References

J. Kindervag, Zero Trust Architecture Framework for Secure Access, Forrester Research, 2020.

National Institute of Standards and Technology (NIST), Zero Trust Architecture (SP 800-207), Gaithersburg, MD: U.S. Department of Commerce, 2020.

A. Rahman and D. Sari, “Modern Authentication in Higher Education Information Systems,” Indonesian Journal of Information Security, vol. 5, no. 1, pp. 33–42, 2021.

T. Pradana, A. Hidayat, and F. Putri, “Integration of CAPTCHA for Preventing Automated Attacks in Web Applications,” Journal of Cybersecurity Engineering, vol. 14, no. 2, pp. 67–75, 2022.

R. Santoso and E. Nurhaliza, “Two-Factor Authentication as a Layered Security Mechanism in Web-Based Platforms,” Jurnal Teknologi Informasi dan Keamanan Siber, vol. 7, no. 3, pp. 45–54, 2023.

D. Wijaya and A. Hasan, “Session Management and Timeout Strategies to Prevent Hijacking Attacks in Campus Systems,” Journal of Network and Data Protection, vol. 6, no. 2, pp. 89–98, 2024.

M. Sitorus, A. Simanjuntak, and R. Lubis, “Implementation of Zero Trust Authentication in Academic Web Portals for Data Protection,” International Journal of Smart Security Systems, vol. 3, no. 1, pp. 12–20, 2025.

M. Bishop, Computer Security: Art and Science, 2nd ed. Boston, MA: Addison-Wesley, 2021.

W. Stallings, Cryptography and Network Security: Principles and Practice, 8th ed. Boston, MA: Pearson Education, 2022.

OWASP Foundation, OWASP Top 10 Web Application Security Risks, OWASP, 2023.

R. Santoso and T. Pradana, “Integrating CAPTCHA and OTP for Web-Based Authentication Security,” Journal of Cyber Information Systems, vol. 9, no. 1, pp. 23–31, 2023.

Kementerian Komunikasi dan Informatika Republik Indonesia, Panduan Keamanan Siber untuk Aplikasi Web, Jakarta: Direktorat Keamanan Informasi, 2024.

A. Y. Al-Hafiz, “Zero Trust Model for Modern Cybersecurity Frameworks,” arXiv preprint, Mar. 2025.

National Institute of Standards and Technology (NIST), Zero Trust Architecture (SP 800-207), Gaithersburg, MD: U.S. Department of Commerce, 2020.

N. Harahap and R. Siregar, “Enhancing Web Authentication with Two-Factor Security and CAPTCHA Integration,” Informatica Journal, vol. 4, no. 2, pp. 55–64, 2023.

S. Mulyono, “Zero Trust Policy Implementation in Cloud-Based Education Systems,” Information Systems International Journal (ISI), vol. 6, no. 4, pp. 120–131, 2024.

M. Setiawan and L. A. Putri, “A Survey of CAPTCHA Technologies to Distinguish Between Human and Computer,” Neurocomputing, vol. 408, pp. 292–307, Sept. 2020.

A. Prasetyo and N. Widyaningrum, “IoT-Based Web Authentication Using Multi-Layer Security,” International Journal of Electrical and Computer Engineering (IJECE), vol. 13, no. 2, pp. 1650–1658, 2023.

H. Lestari, M. Fadillah, and D. Anggara, “Design of Secure Web Portal with Two-Factor Verification and Session Control,” Exploring Science and Application (ESA) Journal, vol. 5, no. 1, pp. 80–88, 2025.

D. Kiswanto, F. Ramadhani, N. M. Surbakti, dan N. A. Nasution,

“Pengembangan dan Implementasi Sistem Deteksi Serangan DDoS Berbasis Algoritma Random Forest,”

Bulletin of Information Technology (BIT), vol. 6, no. 3, pp. 247–256, Sept. 2025

Downloads

Published

2026-01-17

How to Cite

AL-HAFIZ, A. (2026). IMPLEMENTASI ZTA PADA WEBSITE ASPIRASI KAMPUS. Jurnal Informatika Dan Teknik Elektro Terapan, 14(1). https://doi.org/10.23960/jitet.v14i1.8250

Issue

Vol. 14 No. 1 (2026)

Section

Articles

License

Copyright (c) 2026 Jurnal Informatika dan Teknik Elektro Terapan

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.