ANCAMAN TERHADAP KEAMANAN INFORMASI OLEH SERANGAN CROSS-SITE SCRIPTING (XSS) DAN METODE PENCEGAHANNYA

Authors

  • Suroto Suroto Universitas Batam
  • Asman Asman Universitas Batam

DOI:

https://doi.org/10.37776/zk.v11i1.658

Abstract

Information stored on websites or the internet makes it easier for users to exchange information. Of course, only authorized users have access to this information. The amount of information that is spread and stored on the internet invites people who are not entitled to get that information. Various methods are used to obtain access rights and information. One of them is to carry out an attack called Cross Site Scripting Attack. Websites become the target of this type of attack. In this paper, an explanation of what is meant by a Cross Site Scripting attack, how this attack is carried out, and ways to prevent it. Knowledge of this type of attack is indispensable for developers of Web-based information systems. Because this attack works by exploiting programming errors or writing program code in an information system.

Author Biographies

Suroto Suroto, Universitas Batam

Teknik Sistem Informasi. Fakultas Teknik

Asman Asman, Universitas Batam

Teknik Sistem Informasi. Fakultas Teknik

References

Anonymous. Reviewing_Code_for_Cross-site_scripting. https://www.owasp.org/index.php/Reviewing_Code_for_Cross-site_scripting. Diakses November-2020

MacKenzie, Thomas. "ScriptAlert1.com – Concise Cross-Site Scripting Explanation in Multiple Languages". Diakses November-2020

Manico, Jim. Advanced XSS Defence. http://Secappdev.org. Diakses Desember 2020

Neha Gupta. 2015. “XSS Defense: An Approach for Detecting and Preventing Cross Site Scripting Attacks ‘. COMPUSOFT, An international journal of advanced computer technology, (Volume-IV, Issue-III) March-2015

Downloads

Published

2021-06-28

Issue

Vol. 11 No. 1 (2021): APRIL

Section

Articles

License

Copyright and License

Copyright : Authors who publish their manuscripts in this Journal agree to the following conditions:

The copyright on each article belongs to the author.

The author acknowledges that Zona Komputer: Program Studi Sistem Informasi Universitas Batam has the right to publish for the first time with a Creative Commons Attribution 4.0 International License.

Authors can submit articles separately, arrange for non-exclusive distribution of manuscripts that have been published in this journal into other versions (eg sent to the author's institution respository, publication into books, etc.), by acknowledging that the manuscript has been published for the first time at Zona Komputer: Program Studi Sistem Informasi Universitas Batam ;

License :

Zona Komputer: Program Studi Sistem Informasi Universitas Batam is published under the terms of the Creative Commons Attribution 4.0 International License. This license permits anyone to copy and redistribute this material in any form or format, compose, modify, and make derivatives of this material for any purpose, including commercial purposes, as long as they include credit to the Author for the original work.