PROFESIONALISME TSI
“IT FORENSICS”
Materi Minggu IV
➢ IT Audit trail
➢ Real-time audit
➢ IT Forensics
LATAR BELAKANG
a. Internal IT department,
b. External IT consultant,
c. Board of commsion,
d. Management,
e. Internal IT auditor,
f. External IT Auditor.
KUALIFIKASI AUDITOR
1. IT Audit,
2. Analisis resiko berdasarkan hasil
audit,
3. Memeriksa kondisi sistem dan
security benchmarking terhadap
sistem lain/standar yang ada.
FRAMEWORK BESAR
▪ 10 control categories,
▪ 32 control groups,
▪ 109 security controls,
▪ 10 security key controls.
BS 7799 – Code of Practice
Kategori Kontrol
▪ Security organization,
▪ Assets classification and control,
▪ Personnel security,
▪ Physical dan environmental security,
▪ Computer and network
management.
BS 7799 – Code of Practice
▪ 7 areas,
▪ 34 modules (building blocks).
BSI
SAFEGUARD CATALOGUE
▪ 5 categories of threats
BSI
SECURITY MEASURES EXAMPLES
▪ Organisation,
▪ Personnel,
▪ Contingency planning,
▪ Data protection.
BSI
INFRASTRUKTUR
▪ Viewers (QVP).
http://www.avantstar.com/,
http://www.thumbsplus.de/.
▪ Erase/Unerase tools:
Diskscrub/Norton utilities.
▪ Hash utility (MD5, SHA1)
IT FORENSICS
KEBUTUHAN: SOFTWARE
▪ Forensic toolkits:
- Unix/Linux: TCT The Coroners
Toolkit/ForensiX,
- Windows: Forensic Toolkit.
▪ BS7799, BSI:
- Evaluasi yang detail dan digunakan
sebagai dokumentasi “best practices”.
- Detailed audit plans, checklists, tools for
technical audits (sistem operasi, LANs,
dan lain-lain).
KESIMPULAN
▪ IT Forensics:
- Ilmu yang berhubungan dengan
pengumpulan fakta dan bukti
pelanggaran keamanan sistem informasi
serta validasinya menurut metode yang
digunakan (misalnya metode sebab-
akibat).
- Memerlukan keahlian dibidang IT
(termasuk diantaranya hacking) – dan
tools (hardware maupun software).
KESIMPULAN