Hasil Pencarian  ::  Simpan CSV :: Kembali

"Cloud computing offers the use of virtualized hardware, effectively unlimited storage, and software services that can help reduce the execution time of large test suites in a cost-effective manner. The research presented by Tilley and Parveen leverages the resources provided by cloud computing infrastructure to facilitate the concurrent execution of test cases. They introduce a decision framework called SMART-T to support migration of software testing to the cloud, a distributed environment called HadoopUnit for the concurrent execution of test cases in the cloud, and a series of case studies illustrating the use of the framework and the environment. Experimental results indicate a significant reduction in test execution time is possible when compared with a typical sequential environment."

"A comprehensive treatment of systems and software testing using state of the art methods and tools, this book uses numerous examples to provide an understanding in applying these methods to real-world problems"

"This book summarizes the current knowledge of software testing and introduces three current research approaches. The base of knowledge is presented comprehensively in scope but concise in length; thereby the volume can be used as a reference. Research is highlighted from different points of view. Firstly, progress on developing a tool for automated test case generation (TCG) based on a program’s structure is introduced. Secondly, results from a project with industry partners on testing best practices are highlighted. Thirdly, embedding testing into e-assessment of programming exercises is described."

"Ancaman keamanan terhadap website biasa dihasilkan melalui celah yang memungkinkan pengguna lain melakukan tindak kejahatan. Untuk pemeliharaan keamanan website yang baik, deteksi kerentanan website dapat dilakukan dengan prosedur vulnerability identification dan penetration testing. Penetration Testing Execution Standard (PTES) digunakan pada penelitian ini sebagai kerangka kerja atau framework penetration testing dengan tujuan untuk mendapatkan hasil akhir berupa kerentanan yang dapat mengganggu keamanan website. Terdapat tujuh tahapan yang akan dilakukan pada framework PTES yaitu Pre-engagement Interactions, Intelligence Gathering, Threat Modeling, Vulnerability Analysis, Exploitation, Post Exploitation, dan Reporting. Penetration testing ini juga menerapkan metode blackbox testing. Blackbox testing adalah metode pengujian yang dilakukan tanpa mengetahui informasi apa pun mengenai sistem website. Ditemukan tiga kerentanan dengan tingkat risiko tinggi pada website redstorm setelah melakukan penetration testing dengan framework PTES dan metode blackbox testing, yaitu PII Disclosure, SQL Injection, dan SQL Injection-SQLite. Hasil ini menekankan perlunya penguatan keamanan website dan penerapan langkah-langkah mitigasi yang sesuai untuk melindungi data sensitif dan melawan potensi serangan. Selain itu, penelitian ini menegaskan efektivitas dan relevansi kerangka kerja PTES dalam mengidentifikasi kerentanan keamanan sistem. Implikasi dari temuan ini memberikan kontribusi bagi pengembangan kebijakan keamanan informasi dan penelitian tentang keamanan siber yang lebih lanjut.

---

Security threats to common websites are generated by gaps that allow other users to commit criminal acts. For good website security maintenance, website vulnerability detection can be done with vulnerability identification and penetration testing procedures. The Penetration Testing Execution Standard (PTES) is used in this research as a framework for penetration testing with the aim of obtaining the final result of vulnerabilities that can interfere with the operation of the website. There are seven stages that will be performed on the PTES framework: Pre-engagement Interactions, Intelligence Gathering, Threat Modeling, Vulnerability Analysis, Exploitation, Post-exploitation, and Reporting. The penetration test also uses the blackbox testing method. Blackbox testing is a test method that is performed without knowing any information about the website system. Three high-risk vulnerabilities were found on Redstorm websites after performing penetration testing with the PTES framework and blackbox testing methods, namely PII Disclosure, SQL Injection, and SQL injection-SQLite. The results emphasize the need to strengthen website security and implement appropriate mitigation measures to protect sensitive data and counter potential attacks. In addition, the study confirms the effectiveness and relevance of the PTES framework in identifying system security vulnerabilities. The implications of these findings contribute to the development of information security policies and further research on cybersecurity."

"Perangkat lunak dalam operasional sebuah bank mengambil peranan yang sangat signifikan. Seluruh kegiatan operasional sepenuhnya didukung oleh perangkat lunak yang berkualitas. Untuk menjaga kredibilitasnya di mata nasabahnya diperlukan sistem yang tanpa cacat. Proses pengujian sebagai salah satu proses terpenting dalam pengembangan perangkat lunak memiliki peranan dalam menjamin kualitas perangkat lunak yang baik. Saat ini banyak model perbaikan proses pengembangan perangkat lunak, sebagai contoh CMMI. Namun model perbaikan proses yang ada sampai saat ini hanya membahas sedikit mengenai proses pengujian itu sendiri. Testing Maturity Model (TMM) yang memfokuskan pada perbaikan proses pengujian adalah suatu model yang dapat digunakan untuk mengukur tingkat kemapanan proses pengujian pada suatu organisasi. Model ini juga dilengkapi dengan metode pengukuran (TMM Assessment Model), alat pengukuran, dan juga langkah-langkah (Activities, Tasks dan Responsibilities) untuk memperbaiki proses pengujian dan mencapai tingkat yang lebih tinggi. Pada penelitian ini penulis akan melakukan pengukuran tingkat kemapanan proses pengujian pada sebuah bank dan membuat prioritas perbaikan berdasarkan area-area yang lemah. Dan pada akhirnya memberikan usulan perbaikan yang dapat diterapkan untuk memperbaiki proses pengujian pada organisasi tersebut. Untuk memberikan perencanaan yang konkrit, penulis menggunakan metode Plan, Do, Check, and Action (PDCA) Cycle untuk menyusun rencana aksi perbaikan proses pengujian. Hasil dari penelitian adalah penulis berhasil mengukur tingkat kemapanan proses pengujian pada Bank XYZ yaitu tingkat kemapanan 1. Penulis juga berhasil menemukan dua area yang lemah pada kondisi proses pengujian saat ini dan perlu diperbaiki untuk mencapai tingkat kemapanan 2. Dua area lemah yang harus diperbaiki adalah pembuatan sasaran dan kebijakan pengujian dan debugging dan melembagakan teknik dan metode dasar pengujian. Penelitian ini juga menghasilkan rencana aksi untuk membantu organisasi khususnya Bank XYZ untuk memperbaiki dua area yang lemah dan mencapai tingkat kemapanan 2. Dan pada akhirnya dapat meningkatkan kualitas proses pengujian dan produk perangkat lunak.

---

In the daily operations of a bank, softwares used are taking a very significant role. The entire operations should be fully supported by good quality softwares. This is to ensure that the bank gives the best services to their customers while increase its credibility. As one of the most important processed in software development life cycle, a thorough testing process can ensure the quality of the software. Thus, the testing process itself becomes the main focus in many software development life cycles.

Nowadays, there are many models of the software development process improvement. For example, Capability Maturity Model Integration or known as CMMI. Unfortunately, the existing models only address less specific discussion about the testing process where people need more improvement of the testing process. Testing Maturity Model (TMM), which focuses on improving the testing process, is a model that can be used to measure the maturity of the testing process in an organization. It comes with a measurement method known as TMM Assessment Model, measurement tools, and ways (Activities, Tasks, and Responsibilities) where the combination of these three can improve and achieve a higher level of maturity.

Through this study, author will measure the maturity level of the testing process in a bank and gives recommendation on prioritizing the improvement based on the weak areas founded in the field. In the end, author proposes improvements that can be applied by the organization to the entire process of testing. Author uses PDCA (Plan, Do, Check, and Action) Cycle method to create action plans for improving the testing process.

The result of maturity level of the testing process at XYZ Bank is maturity level 1. The author also found two weak areas in the current conditions of the testing process which needs to be improved to achieve maturity level 2. Two weak areas that should be improved are Develop Testing And Debugging Goals And Policies and Institutionalize Basic Testing Techniques And Methods. The study also produced action plans to help the organization in particular XYZ Bank to fix two weak areas, achieve maturity level 2, and improve the quality of the test process and software product."