Hasil Pencarian  ::  Simpan CSV :: Kembali

"Cloud computing offers the use of virtualized hardware, effectively unlimited storage, and software services that can help reduce the execution time of large test suites in a cost-effective manner. The research presented by Tilley and Parveen leverages the resources provided by cloud computing infrastructure to facilitate the concurrent execution of test cases. They introduce a decision framework called SMART-T to support migration of software testing to the cloud, a distributed environment called HadoopUnit for the concurrent execution of test cases in the cloud, and a series of case studies illustrating the use of the framework and the environment. Experimental results indicate a significant reduction in test execution time is possible when compared with a typical sequential environment."

"A comprehensive treatment of systems and software testing using state of the art methods and tools, this book uses numerous examples to provide an understanding in applying these methods to real-world problems"

"[This book summarizes the current knowledge of software testing and introduces three current research approaches. The base of knowledge is presented comprehensively in scope but concise in length; thereby the volume can be used as a reference. Research is highlighted from different points of view. Firstly, progress on developing a tool for automated test case generation (TCG) based on a program’s structure is introduced. Secondly, results from a project with industry partners on testing best practices are highlighted. Thirdly, embedding testing into e-assessment of programming exercises is described., This book summarizes the current knowledge of software testing and introduces three current research approaches. The base of knowledge is presented comprehensively in scope but concise in length; thereby the volume can be used as a reference. Research is highlighted from different points of view. Firstly, progress on developing a tool for automated test case generation (TCG) based on a program’s structure is introduced. Secondly, results from a project with industry partners on testing best practices are highlighted. Thirdly, embedding testing into e-assessment of programming exercises is described.]"

"Ancaman keamanan terhadap website biasa dihasilkan melalui celah yang memungkinkan pengguna lain melakukan tindak kejahatan. Untuk pemeliharaan keamanan website yang baik, deteksi kerentanan website dapat dilakukan dengan prosedur vulnerability identification dan penetration testing. Penetration Testing Execution Standard (PTES) digunakan pada penelitian ini sebagai kerangka kerja atau framework penetration testing dengan tujuan untuk mendapatkan hasil akhir berupa kerentanan yang dapat mengganggu keamanan website. Terdapat tujuh tahapan yang akan dilakukan pada framework PTES yaitu Pre-engagement Interactions, Intelligence Gathering, Threat Modeling, Vulnerability Analysis, Exploitation, Post Exploitation, dan Reporting. Penetration testing ini juga menerapkan metode blackbox testing. Blackbox testing adalah metode pengujian yang dilakukan tanpa mengetahui informasi apa pun mengenai sistem website. Ditemukan tiga kerentanan dengan tingkat risiko tinggi pada website redstorm setelah melakukan penetration testing dengan framework PTES dan metode blackbox testing, yaitu PII Disclosure, SQL Injection, dan SQL Injection-SQLite. Hasil ini menekankan perlunya penguatan keamanan website dan penerapan langkah-langkah mitigasi yang sesuai untuk melindungi data sensitif dan melawan potensi serangan. Selain itu, penelitian ini menegaskan efektivitas dan relevansi kerangka kerja PTES dalam mengidentifikasi kerentanan keamanan sistem. Implikasi dari temuan ini memberikan kontribusi bagi pengembangan kebijakan keamanan informasi dan penelitian tentang keamanan siber yang lebih lanjut.

---

Security threats to common websites are generated by gaps that allow other users to commit criminal acts. For good website security maintenance, website vulnerability detection can be done with vulnerability identification and penetration testing procedures. The Penetration Testing Execution Standard (PTES) is used in this research as a framework for penetration testing with the aim of obtaining the final result of vulnerabilities that can interfere with the operation of the website. There are seven stages that will be performed on the PTES framework: Pre-engagement Interactions, Intelligence Gathering, Threat Modeling, Vulnerability Analysis, Exploitation, Post-exploitation, and Reporting. The penetration test also uses the blackbox testing method. Blackbox testing is a test method that is performed without knowing any information about the website system. Three high-risk vulnerabilities were found on Redstorm websites after performing penetration testing with the PTES framework and blackbox testing methods, namely PII Disclosure, SQL Injection, and SQL injection-SQLite. The results emphasize the need to strengthen website security and implement appropriate mitigation measures to protect sensitive data and counter potential attacks. In addition, the study confirms the effectiveness and relevance of the PTES framework in identifying system security vulnerabilities. The implications of these findings contribute to the development of information security policies and further research on cybersecurity."

"Tujuan dari setiap pengembang perangkat lunak adalah menghasilkan suatu perangkat lunak yang berkualitas, tepat waktu, dan sesuai anggaran. Untuk mendapatkan kualitas perangkat lunak yang baik maka diperlukan suatu proses pengujian yang dapat menjaga kualitas. Untuk melakukan pengujian dengan baik, maka diperlukan suatu metodologi yang tepat untuk menerapkan proses pengujian dalam pengembangan perangkat lunak. Salah satu metodologi yang banyak digunakan adalah Rational Unified Process, dengan dukungan tools yang lengkap. Studi kasus yang dilakukan dengan menggunakan aplikasi berbasis Web untuk melakukan pengujian perangkat lunak menggunakan alat bantu yang tersedia pada Rational Unified Process diharapkan akan dapat dijadikan sebagai panduan bagi pihak-pihak yang terlibat dalam proses pengujian perangkat lunak, maupun pihak-pihak yang ingin mempelajari bagaimana melakukan pengujian perangkat lunak menggunakan salah satu alternatif alat bantu yang tersedia. Dalam laporan Proyek Akhir ini disajikan pemanfaatan metodologi Rational Unified Process untuk melakukan pengujian terhadap perangkat lunak dengan memanfaatkan tahapan-tahapan dalam workflow testing. Kemudian dilanjutkan dengan melakukan pengujian terhadap aplikasi berbasis Web untuk memperoleh pemahaman mengenai tahapan pengujian perangkat lunak menggunakan alat bantu Rational TestManager dan Rational Robot dari tahap persiapan, perencanaan, desain, implementasi, eksekusi, dan evaluasi pengujian.

---

The goal of every software development is to develop quality software, on time schedule, and on budget. Testing process is needed to get a good software quality which can take care of quality. The right methodologies is needed to apply testing process in software development. One of methodologies which is a lot of used is Rational Unified Process, with complete support tools. Case study by using application base on Web to conduct software testing using tools available at Rational Unified Process expected will be able to be made as guidance for partys in concerned in course of software testing, and also the partys which wish to learn how to conduct software testing using one of assistive appliance alternative which is made available. In this Final Project report is presented a Rational Unified Process methodologies exploiting to conduct software testing to exploitedly step in workflow testing. Later then continued with conducted software test to application base on Web to obtain the understanding of software test using Rational Testmanager and Rational Robot start from preparation phase, planning, desain, implementation, execute, and evaluate test."