UIN (Universitas Islam Negeri) Sunan Kalijaga, Yogyakarta: E-Journal Fakultas Sains dan Teknologi
Not a member yet
1440 research outputs found
Sort by
Transformasi Pendidikan Islam untuk Generasi Z: Peran Teknologi dalam Ruang Kelas
Islamic education has had an important role since the time of the Prophet Muhammad ﷺ until now. Generation Z or the younger generation plays a key role in changing the governance structure in a country. This article discusses the challenges and potential of Islamic education in facing the development of modern technology. Surveys show that generation Z\u27s moral and moral education tends to be neglected, focusing on modern education, and lacking attention to moral values. Islamic religious education is faced with the challenge of utilizing technology effectively so as not to be left behind by western education. This article proposes the integration of technology curriculum in Islamic religious education, the use of educational applications, and paying attention to the impact of the transformation of Islamic education on the character and morals of generation Z. The research method used is library research with a text analysis approach and related information. Data sources involve scientific books, journals, scientific research, case studies, and other related sources of information. As a result, Generation Z has certain characteristics, such as inclusiveness, independence and realism. The use of technology in Islamic religious learning among generation Z shows positive potential, but also faces challenges, such as short attention spans and dependence on teachers. Technology curriculum integration needs to pay attention to learning independence and maintaining religious values. Although positive impacts include creativity and wider access, there are potential negative impacts such as loss of depth of religious understanding and social isolation. Therefore, there needs to be cooperation between educators, government and parents to design a balanced educational strategy in facing the transformation of Islamic education for generation Z.
 
Analisis Performa Normalisasi Data untuk Klasifikasi K-Nearest Neighbor pada Dataset Penyakit
This study investigates four normalization methods (Min-Max, Z-Score, Decimal Scaling, MaxAbs) across prostate, kidney, and heart disease datasets for K-Nearest Neighbor (K-NN) classification. Imbalanced feature scales can hinder K-NN performance, making normalization crucial. Results show that Decimal Scaling achieves 90.00% accuracy in prostate cancer, while Min-Max and Z-Score yield 97.50% in kidney disease. MaxAbs performs well with 96.25% accuracy in kidney disease. In heart disease, Min-Max and MaxAbs attain accuracies of 82.93% and 81.95%, respectively. These findings suggest Decimal Scaling suits datasets with few instances, limited features, and normal distribution. Min-Max and MaxAbs are better for datasets with numerous instances and non-normal distribution. Z-Score fits datasets with a wide range of feature numbers and near-normal distribution. This study aids in selecting the appropriate normalization method based on dataset characteristics to enhance K-NN classification accuracy in disease diagnosis. The experiments involve datasets with different attributes, continuous and categorical data, and binary classification. Data conditions such as the number of instances, the number of features, and data distribution affect the performance of normalization and classification
Analisis Peningkatan Kualitas Jurnal Biology, Medicine & Natural Product Chemistry
Publikasi jurnal ilmiah nasional maupun internasional menjadi tonggak penting dalam karier akademik bagi peneliti di berbagai bidang. Publikasi jurnal ilmiah dalam dunia pendidikan memiliki peran yang sangat penting. Salah satu upaya yang bisa dilakukan sebagai pengelola jurnal yaitu peningkatan mutu jurnal ilmiah di Indonesia. Penelitian ini bertujuan untuk merancang dan melakukan program peningkatan kualitas Jurnal Biology, Medicine & Natural Product Chemistry. Penelitian diawali dengan pengumpulan dan analisis data dari wawancara, notulensi rapat, korespondensi, dan dokumen formal yang terkait jurnal Biology, Medicine & Natural Product Chemistry, serta catatan dari asesor jurnal di sepanjang perjalanan jurnal tersebut. Dari analisis tersebut ditentukan program/langkah-langkah untuk peningkatan kualitas jurnal. Paper ini membahas tentang mispersepsi dalam peningkatan mutu jurnal, hambatan dalam peningkatan kualitas, dan program-program untuk mengatasinya. Dalam paper ini dibahas juga kemungkinan-kemungkinan solusi ke depan dan tantangannya.
[Publication of national and international scientific journals is an important milestone in the academic career of researchers in various fields. Publication of scientific journals in the world of education has a very important role. One of the efforts that can be done as a journal manager is to improve the quality of scientific journals in Indonesia. This study aims to design and implement a program to improve the quality of the Biology, Medicine & Natural Product Chemistry Journal. The study began with the collection and analysis of data from interviews, meeting minutes, correspondence, and formal documents related to the Biology, Medicine & Natural Product Chemistry journal, as well as notes from journal assessors throughout the journal\u27s journey. From this analysis, programs/steps are determined to improve the quality of the journal. This paper discusses misperceptions in improving journal quality, obstacles to improving quality, and programs to overcome them. This paper also discusses possible future solutions and challenges.
Analisa Kerentanan Website Terhadap Serangan Cross-Site Scripting (XSS) Metode Penetration Testing
Serangan cross-site scripting (XSS) merupakan salah satu jenis serangan web yang berbahaya. Serangan ini dapat digunakan untuk mencuri data pengguna, melakukan phising, atau menjalankan skrip berbahaya di browser pengguna. Penelitian ini bertujuan untuk: Menganalisis dan mengidentifikasi kerentanan XSS pada situs website dengan menggunakan metode Penetration Testing serta memberikan rekomendasi kepada pihak PT. Tricon Metalindo Perkasa dari hasil pentest yang telah dilakukan. Metode yang digunakan adalah metode penetrasi testing dengan menggunakan tools OWASP Zap dan Hackbar. Hasil penelitian menemukan alert dianataranya Vulnerable JS Library, X-Frame-Options Header Not Set, Absence Of Anti-CSRF Tokens, Cross-Domain JavaScript Source File Inclusion, Incomplete or No Cache-Control and Pragma HTTP Header Set dan X-Content-Type-Options-Header Missing dengan Risk tingkat menengah (medium) sebanyak 2 temuan, tingkat rendah (low) sebanyak 4 dan condifence tingkat menengah (medium) sebanyak 6 dan menunjukkan bahwa terdapat kerentanan XSS pada website PT. Tricon Metalindo Perkaasa, kerentanan tersebut berupa Reflected XSS yang terletak pada kolom input pencarian dengan tingkat risk medium, kerentanan ini dapat di exsploitation oleh penyerang untuk menampilkan pop-up, melakukan phising, atau mencuri data pengguna.
----------------------------
Cross-site scripting (XSS) attacks are a malicious form of web attacks. These attacks can be used to steal user data, perform phishing, or run malicious scripts in the user\u27s browser. This study aims to: Analyze and identify XSS vulnerability on websites using Penetration Testing method and provide recommendations to PT. Tricon Metalindo Mighty from the results of the pentest that has been carried out. The method used is penetration testing using OWASP Zap and Hackbar tools. The research findings revealed several alerts, including Vulnerable JS Library, X-Frame-Options Header Not Set, Absence of Anti-CSRF Tokens, Cross-Domain JavaScript Source File Inclusion, Incomplete or No Cache-Control and Pragma HTTP Header Set, and Missing X-Content-Type-Options-Header. There were 2 findings categorized as medium risk, 4 findings as low risk, and 6 findings with medium confidence level. These findings indicate the presence of XSS vulnerabilities on the PT. Tricon Metalindo Perkasa website, specifically in the form of reflected XSS located in the search input column with a medium-risk level. This vulnerability can be exploited by attackers to display pop-ups, carry out phishing attempts, or steal user data.
Keywords: cross-site scripting (XSS), reflected XSS, OWASP Zap, Penetratio
Peningkatan Keamanan Server GraphQL Terhadap Serangan DDOS Dengan Tipe Batch Attack Menggunakan Metode Rate Limiting
GraphQL telah memperkenalkan pergeseran paradigma tentang bagaimana aplikasi berkomunikasi dengan data, menawarkan opsi yang lebih efisien dan ampuh dibandingkan dengan RESTful API tradisional. Namun, atribut yang membuat GraphQL fleksibel dan efisien juga dapat membuatnya rentan terhadap ancaman siber yang ditargetkan, termasuk serangan batch. Eksploitasi ini memanfaatkan kemampuan untuk menggabungkan beberapa kueri atau mutasi ke dalam satu permintaan HTTP, yang dapat menyebabkan server kelebihan beban. Di berbagai industri, termasuk di Facebook, tempat kelahiran GraphQL, teknologi ini digunakan untuk menangani pertukaran data yang rumit antara aplikasi dan basis pengguna yang luas di seluruh dunia. Pembatasan kecepatan muncul sebagai penanggulangan yang tangguh terhadap ancaman serangan batch. Dengan membatasi frekuensi permintaan yang dapat dilakukan pengguna dalam interval waktu tertentu, pembatasan laju melindungi kinerja dan waktu aktif server sekaligus menggagalkan penyalahgunaan. Pendekatan ini tidak hanya membantu dalam manajemen sumber daya server yang bijaksana tetapi juga bertindak sebagai pencegah terhadap aktor jahat yang ingin memanfaatkan sistem. Data empiris mengungkapkan bahwa pembatasan laju efektif dalam mengurangi beban CPU dan Memori secara substansial, mengurangi penggunaan CPU rata-rata dari 4,8% menjadi 0,86% dan penggunaan Memori dari 87MB menjadi 49,6MB selama serangan. Sebaliknya, server tanpa pembatasan kecepatan mengalami lonjakan konsumsi CPU dan Memori setiap beberapa detik, sedangkan dengan pembatasan kecepatan, lonjakan seperti itu terbatas pada 5 detik awal. Bukti ini menggarisbawahi bahwa pembatasan kecepatan memungkinkan server untuk mempertahankan kinerja dan ketersediaan dalam menghadapi potensi serangan.
Kata kunci: DdoS, GraphQL, Batch Attack
-------------------------------------------------------
Abstract
GraphQL has introduced a paradigm shift in how applications communicate with data, offering a more streamlined and potent option compared to traditional RESTful APIs. However, the very attributes that make GraphQL flexible and efficient can also render it vulnerable to targeted cyber threats, including batch attacks. These exploits leverage the capability to bundle multiple queries or mutations into a single HTTP request, which can lead to server overload. Across various industries, including at Facebook, the birthplace of GraphQL, this technology is employed to handle intricate data exchanges between applications and a vast user base worldwide. Rate limiting emerges as a formidable countermeasure to the threat of batch attacks. By capping the frequency of requests a user can initiate within a specified time interval, rate limiting safeguards server performance and uptime while thwarting misuse. This approach not only aids in the judicious management of server resources but also acts as a deterrent against malicious actors seeking to take advantage of the system. The empirical data reveals that rate limiting is effective in substantially reducing the strain on CPU and Memory, decreasing average CPU usage from 4.8% to 0.86% and Memory usage from 87MB to 49.6MB during an attack. In contrast, servers without rate limiting experience a surge in CPU and Memory consumption every few seconds, whereas with rate limiting, such a spike is confined to the initial 5 seconds. This evidence underscores that rate limiting enables servers to sustain performance and availability in the face of potential attacks.
Keywords: DdoS, GraphQL, Batch Attac
Tinjauan Pustaka Sistematis: Tantangan Dan Faktor-Faktor Pengembangan Kesiapan Forensik Digital
Teknologi informasi telah mengubah hampir segala lini kehidupan dari konvensional ke digitalisasi. Digitalisasi yang begitu cepat, menimbulkan permasalahan pada serangan siber yang belum diimbangi oleh penanganan insiden siber. Kesiapan forensik digital menjadi hal penting bagi organisasi agar proses penanganan insiden lebih efektif dan efisien. Tujuan penelitian ini adalah mengidentifikasi faktor-faktor dan tantangan terkait topik kesiapan digital forensik. Metode yang digunakan dalam penelitian ini menggunakan metode tinjauan pustaka sistematis. Hasil yang didapatkan pada penelitian ini memberikan informasi jurnal yang paling banyak mempublikasikan topik kesiapan forensik digital, obyek penelitian, metode yang digunakan, standarisasi yang diintegrasikan, faktor-faktor dan tantangan dalam pengembangan kesiapan forensik digital. Penelitian ini bisa menjadi rujukan peneliti akademisi ataupun praktisi pada bidang forensik digital ataupun pengembang aplikasi.
Kata kunci: tinjauan pustaka sistematis, kesiapan forensik digital, ISO/IEC 27043, COBIT.
------------------------------------
Abstract
Information technology has changed almost all lines of life from conventional to digitalization. Rapid digitalization has led to problems with cyber-attacks that the handling of cyber incidents has not matched. Digital forensic readiness is important for organizations to make the incident-handling process more effective and efficient. The purpose of this research is to identify factors and challenges related to the topic of digital forensic readiness. The method used in this research is a systematic literature review. The results obtained in this study provide information on the journals that publish the most digital forensic readiness topics, research objects, methods used, standardization integrated, factors, and challenges in developing digital forensic readiness. This research can be a reference for academic researchers or practitioners in digital forensics or application developers.
Keywords: systematic literatur review, digital forensic readiness, ISO/IEC 27043, COBIT.
ADSORPSI ZAT WARNA METHYL ORANGE MENGGUNAKAN ZEOLIT DARI ABU DASAR BATUBARA
Telah dilakukan penelitian adsorpsi zat warna methyl orange menggunakan zeolit abu dasar batubara. Penelitian ini bertujuan untuk mengetahui karakteristik zeolit hasil sintesis dan kesetimbangan adsorpsi, kinetika adsorpsi dan termodinamika adsorpsi zeolit terhadap pewarna methyl orange. Karakterisasi gugus fungsional zeolit menggunakan Spektrofotometer FT-IR dan kristalinitas menggunakan Difraktometer Sinar-X. Kajian adsorpsi zeolit terhadap methyl orange dilakukan pada variasi pH methyl orange range 1, 2, 3, 4, 5, 6, 7 dan 8, variasi waktu kontak adsorpsi yaitu 1, 2, 3, 4, 5, 10, 15, 20, 25, 35, 45, 55, 65, 75, 85, 95, 105, 115, 125, dan 135 menit, variasi konsentrasi yaitu 10, 20, 50, dan 100 mg/L dan variasi temperatur yaitu 28, 35, 45, dan 55 0C. Hasil karakterisasi sintesis zeolit dari abu dasar batubara menggunakan karaterisasi X-Ray Diffraction dan Fourier Transform Infra Red menunjukkan bahwa zeolit hasil sintesis mempunyai struktur material zeolit faujasit yang ditunjukkan dengan puncak utama yaitu 6,2940; 26,8950; dan 31,1900. Adsorpsi zeolit terhadap methyl orange terjadi pada pH 2, kesetimbangan adsorpsi cenderung mengikuti pola isoterm Freundlich dengan kapasitas adsorpsi (n) yaitu 2,392x10-3 mol/L dan konstanta Freundlich (K) yaitu 1,803x10-4 mol/g. Kinetika adsorpsi cenderung mengikuti pseudo orde dua dengan nilai konstanta laju reaksi (k) yaitu 1,866 (g/mg min) dan kapasitas adsorpsi (qe) yaitu 10,341. Termodinamika adsorpsi membuktikan bahwa pembentukan sistem adsorpsi adsorben dengan adsorbat bersifat spontan ditunjukkan dengan nilai ∆G0 (8.825,652 Kj/mol), ∆H0 (-0,2485 Kj/mol), dan ∆S0 (+29,058 Kj/mol)
Study of Earthquake Damage Potential Based on b-Value Variation in The Special Region of Yogyakarta: Studi Potensi Kerusakan Gempa Bumi Berdasarkan Variasi Nilai B Di Daerah Istimewa Yogyakarta
Indonesia is a region prone to various natural disasters, including earthquakes. It is located at the convergence of three major tectonic plates: the Eurasian Plate, the Indo-Australian Plate, and the Pacific Plate. The collision of these three plates causes earthquakes. The Special Region of Yogyakarta is one of the areas that has been impacted multiple times by damaging earthquakes due to its proximity to the meeting point of the Eurasian and Indo-Australian Plates. This study was conducted to examine earthquake statistics in the Special Region of Yogyakarta based on analyses of a-value and b-value in this area, thereby identifying potential earthquake recurrence. Secondary data from the IRIS (Incorporated Research Institutions for Seismology) earthquake catalog from 2006 to 2020 were used for this seismic analysis. The data processing results showed that a-values ranged between 3.5 and 7, with an average value across the entire region of 5.17; meanwhile, b-values ranged between 0.7 and 1.2, with an average value across all areas being 0.775. The area requiring caution is the southern sea region of Special Region Yogyakarta, which has potential for earthquakes with magnitudes up to 6 occurring within intervals of every 5–10 years
The Initial Development and Validation of Physical, Psychosocial and Fatigue Level Questionnaire
The lack of comprehensive tool to assess both risk factors of physical and psychosocial risk factors as well as fatigue level effectively is significant in similar field research. Therefore, the aim of this study is to do the initial development and content validation of a questionnaire that identifies and measures the risk factors influencing the fatigue levels. The questionnaire was developed by implementing adapt method followed by item generation in the initial development. This questionnaire was then validated in terms of content validation by expert panel reviews. The content validity result are as follows: 64-items out of 146-items scale had I-CVI below 1, 24-items with I-CVI of 0.8, and 3-items with 0.7, and the remaining items had I-CVI of below than 0.7. The average value of CVR was 1, and the S-CVI/Ave of the questionnaire was 0.93. Items with content validity of 0.7 and above was maintained, therefore, the questionnaire ended with 87-items. Findings indicates that the questionnaire is valid for assessing the physical and psychosocial risk factors associating with the fatigue levels. This questionnaire can be made a tool in assessing workplace while promote efficiency through this comprehensive tool, contributing to a better understanding of occupational risks and potential interventions. 
Keamanan Jaringan Wi-Fi Terhadap Serangan Packet Sniffing Menggunakan Firewall Rule (Studi Kasus : Pt. Akurat.Co)
Wifi sangat rentan terhadap berbagai ancaman serangan seperti packet sniffing, sistem keamanan dan identifikasi yang baik diperlukan untuk mencegah serangan oleh oknum yang tidak bertanggung jawab. PT Akurat.co merupakan perusahaan media berita yang bergerak dibidang teknologi informasi yang berpotensi terjadi permasalahan keamanan jaringan karena terdapat port-port terbuka dan pengimplementasian topologi jaringan yang tidak aman. Untuk mengatasi masalah tersebut terdapat beberapa cara, berupa pencegahan dan pendeteksian. Salah satu bentuk pencegahan adalah firewall rule fitur yang terdapat di Mikrotik Router OS berfungsi sebagai pemberi akses paket koneksi. Metode simulasi menjadi dasar pada penelitian ini untuk mensimulasikan kejadian serangan pada wifi. Dengan adanya proses pengujian untuk sistem keamanan jaringan wifi yang berupa usaha penyusupan dengan percoban serangan arp spoofing untuk mencari username dan password dan percobaan scanning port untuk mencari port yang terbuka dan percobaan serangan ddos attack untuk mengirimkan paket ke target dan mengimplementasikan firewall rule terhadap serangan yang telah dilakukan. Firewall rule berhasil melakukan action drop terhadap seranga arp spoofing sehingga serangan tersebut dapat diproteksi, action tartip berhasil mengecoh port yang tebuka adalah port tipuan dan berhasil melakukan drop terhadap pengiriman paket yang banyak. Sehingga sistem keamanan jaringan terjaga dengan aman, dan setiap aktivitas peretasan berhasil di cegah oleh firewall rule mikrotik.
Kata kunci: keamanan jaringan, wireless fidelity, packet sniffing, firewall rule mikrotik router os.
-------------------------------------------------------------------------
Wifi is very vulnerable to various threats, such as packet sniffing. Good security and identification systems are needed to prevent attacks by irresponsible people. PT Akurat.co is a news media company operating in the field of information technology that has potential network security problems due to the existence of open ports and the implementation of an unsafe network topology. There are several ways to deal with the problem: prevention and detection. One form of precaution is the firewall rule feature that is present in Mikrotik Router OS and serves as the access provider for the connection package. The simulation method forms the basis for this research to simulate attacks on WiFi. With the testing process for the wifi network security system, there is an intrusion attempt with an arp spoofing attack attempt to find a username and password, a port scanning experiment to find an open port, and an attempt at a DDoS attack to send a package to the target. Implement a firewall rule against an attack that has been carried out. The firewall rule successfully performed an action drop against an arp spoofing attack so that the attack can be protected. The action tartip successfully blocked the port that was opened as a fraudulent port and successfully executed an action drop against the delivery of many packages. So the network security system is awake safely, and any hacking activity is successfully prevented by a Mikrotik firewall rule.
Keywords: Network security, wireless fidelity, packet sniffing, firewall rule mikrotik router os