Sistem Komputer
DOCHI RAMADHANI, ST
Pengantar
Keamanan
Komputer
KEAMANAN
Pengamanan KOMPUTER
Jaringan Kriptografi
Komputer
Pengamanan Pengamanan
Sistem Program
Operasi
Dasar Pemikiran Keamanan Komputer
Management:
“nyambung dulu (online dulu),
security belakangan”
Timbul Masalah
“Sekarang kan belum ada masalah!”
Security
“Bagaimana ROI?”
Praktisi:
“Pinjam password admin, dong”
Sumber:
Surat Pembaca, Kompas, 2003
Mungkinkah aman?
Sangat sulit mencapai 100% aman
Ada timbal balik antara keamanan vs.
kenyamanan (security vs convenience)
◦ Semakin tidak aman, semakin nyaman
Definisi computer security:
(Garfinkel & Spafford)
A computer is secure if you can depend on it and
its software to behave as you expect
Hacker kecil (1)
Hacker kecil (2)
Contoh peningkatkan
kompleksitas
Operating system Year Lines of
Code
Windows 3.1 1992 3 million
Windows NT 1992 4 million
Windows 95 1995 15 million
Wndows NT 4.0 1996 16.5 million
Windows 98 1998 18 millions
Windows 2000 2000 35-60
millions
Klasifikasi Keamanan Sisinfo
[menurut David Icove]
Network
ISP sniffed,
Holes
attacked
1. System (OS)
2. Network
Internet 3. Applications (db)
Network Network
sniffed, attacked sniffed,
attacked
Users Web Site
Trojan horse - Applications
(database,
Web server)
hacked
Userid, Password, -OS hacked
PIN, credit card # www.bank.co.id
On the Internet nobody knows you’re
a dog
IT SECURITY FRAMEWORK
Pengamanan Menyeluruh
Harus menyeluruh - holistic approach
• implementation
TECHNOLOGY • ...
Pengamanan Berlapis
IDS
detect
Customer intrusions
(with authentication device)
core
banking
Internet applications
Internet
Firewal Web server(s) Firewall banking
gateway
protect access protect access
to web server to SQL
TERIMA KASIH