Application Security Testing to Support Digital-Based Cultural Ecosystem in Jogja Smart Province

Abstract

Jogja Smart Province (JSP) is a framework for utilizing the information technology to seek a regional collaboration to help resolving some strategic issues or problems. In addition, JSP also encourages the development of potentials in the Special Region of Yogyakarta. Several digital applications have been developed to support JSP including mobile and web-based applications. These applications are very important to realize the five dimensions of JSP, namely smart living, smart culture, smart society, smart environment, and smart governance. However, there are some serious problems that threaten the sustainability of JSP, including cyber-attacks on JSP applications. Therefore, this community engagement activity carried out by the Department of Electrical Engineering and Informatics, Vocational College of Universitas Gadjah Mada aims to perform penetration testing of applications owned by JSP. This community engagement activity is in partnership with the Communication and Informatics Office of Special Region of Yogyakarta, which is authorized to manage JSP applications. Some applications targeted for penetration testing include Jogja Istimewa, Visiting Jogja, e-Prima, BiroHukum, Paperless, Jogjaplan, LPSE, Peladen, Sadewa, Jogjaprov, and Simpeg2. By doing penetration testing on these applications, the potential vulnerabilities found in JSP applications can be identified. Furthermore, several suggestions or recommendations are proposed to improve the resilience of JSP applications from potential cyber-attacks.