Securing Web-Based E-Voting System Using Captcha and SQL Injection Filter

https://doi.org/10.22146/ijccs.57416

Amiruddin Amiruddin(1*), Apriza Noer Ramadhan(2), David Herdianto(3)

(1) Politeknik Siber dan Sandi Negara
(2) Politeknik Siber dan Sandi Negara
(3) Politeknik Siber dan Sandi Negara
(*) Corresponding Author

Abstract


 The electoral system is very necessary in the democratic life of students, especially to elect a senate chairman in a higher education environment. The use of conventional electoral system is slow, inefficient, and insecure compared to that of electronic-based because it requires a long time for the registration to implementation and counting of votes; use a lot of papers; and it raises the potential for manipulation of ballot papers. In this research, we developed a student electoral system that is safe from non-human participants and electronic-based called e-voting. The system was built with a web platform using PHP and MySQL programming applications. The system development method follows the System Life Cycle (SLC) which consists of the stages of planning, analysis, design, implementation, and testing of the system. This system implements a security mechanism in the form of verification using captcha and SQL injection filter and is implemented in the activities of Komisi Pemilihan Umum Mahasiswa (KPUM). System testing to measure the suitability of implementation with the needs was done using a blackbox method. The result of this research is an e-voting system that satisfies the prevention test of SQL injection and non-human participants attacks

Keywords


design; e-voting; general election; students; STSN

Full Text:

PDF


References

[1] D. Seftyanto, A. Amiruddin and A. R. Hakim, "Design of Blockchain-Based Electronic Election System Using Hyperledger: Case of Indonesia," 2019 4th International Conference on Information Technology, Information Systems and Electrical Engineering (ICITISEE), Yogyakarta, Indonesia, 2019, pp. 228-233, doi: 10.1109/ICITISEE48480.2019.9003768

[2] A. Qureshi, D. Megías and H. Rifà-Pous, "SeVEP: Secure and Verifiable Electronic Polling System," in IEEE Access, vol. 7, pp. 19266-19290, 2019. doi: 10.1109/ACCESS.2019.2897252

[3] M. Kumar, S. Chand and C. P. Katti, "A Secure End-to-End Verifiable Internet-Voting System Using Identity-Based Blind Signature," in IEEE Systems Journal, vol. 14, no. 2, pp. 2032-2041, June 2020. doi: 10.1109/JSYST.2019.2940474

[4] L. P. Alonso, M. Gasco, D. Y. Marcos del Blanco, J.A.H. Alonso, J. Barrat and H.A. Moreton, "E-voting system evaluation based on the Council of Europe recommendations: Helios Voting," in IEEE Transactions on Emerging Topics in Computing. doi: 10.1109/TETC.2018.2881891

[5] B. Shahzad and J. Crowcroft, "Trustworthy Electronic Voting Using Adjusted Blockchain Technology," in IEEE Access, vol. 7, pp. 24477-24488, 2019. doi: 10.1109/ACCESS.2019.2895670

[6] E. V. Palekha et al., "Cross-Platforming Web-Application of Electronic On-line Voting System on the Elections of Any Level," 2019 IEEE East-West Design & Test Symposium (EWDTS), Batumi, Georgia, 2019, pp. 1-4, doi: 10.1109/EWDTS.2019.8884457.

[7] K. M. R. Alam, S. Tamura, S. M. S. Rahman and Y. Morimoto, "An Electronic Voting Scheme Based on Revised-SVRM and Confirmation Numbers," in IEEE Transactions on Dependable and Secure Computing. doi: 10.1109/TDSC.2019.2892465

[8] M. Thiga, V. Chebon, S. Kiptoo, E. Okumu and D. Onyango, "Electronic Voting System for University Student Elections: The Case of Kabarak University, Kenya," 2018 IST-Africa Week Conference (IST-Africa), Gaborone, 2018

[9] M. F. Isnaini, “Analisis dan Implementasi E-Voting System Pada Pemilihan Kepala Daerah,” Skripsi, Institut Pertanian Bogor, 2009.

[10] H. Haryati, K. Adi, and S. Suryono, “Sistem Pemungutan Suara Elektronik Menggunakan Model Poll Site E-Voting,” J. Sist. Inf. BISNIS, vol. 4, no. 1, Apr. 2014.

[11] M. A. Nazal, R. Pulungan, & M. Riasetiawan. Data Integrity and Security using Keccak and Digital Signature Algorithm (DSA), IJCCS (Indonesian Journal of Computing and Cybernetics Systems), Vol 13, No 3, 2019.

[12] A. W. Nugroho, “Perancangan E-Voting Berbasis Web (Studi Kasus Pemilihan Kepala Daerah Sukoharjo),” Skripsi, UIN Sunan Kalijaga, 2011.

[13] Y. Yulianingsih, “Menangkal Serangan SQL Injection Dengan Parameterized Query,” J. Edukasi Dan Penelit. Inform. JEPIN, vol. 2, no. 1, Jun. 2016.

[14] I. Riadi, “Optimalisasi keamanan website menggunakan captcha,” Seminar Nasional Informatika, UPN Veteran Yogyakarta, p. 7, 2008.

[15] Y. Darmayunata, F.A. Syam, & A. Afriansyah. Implementation and Development of E-Voting System for Election of Student Council Chairperson of SMP Negeri 10 PEKANBARU. Journal of Applied Engineering and Technological Science (JAETS), 1(2), 2020, 150-161. https://doi.org/10.37385/jaets.v1i2.105

[16] O. Suprianto & I. Affandi. Student Participation with E-Voting in the Digital Era.Advances in Social Science, Education and Humanities Research, volume 418, 2nd Annual Civic Education Conference (ACEC 2019) 10.2991/assehr.k.200320.043..

[17] A. I. Adekitan, V. Matthews, T. John, & S. Uzairue. (2018). Implementation of E-Voting System for Student Union Government Elections. TELKOMNIKA Indonesian Journal of Electrical Engineering. 16. 10.12928/telkomnika.v16i5.9739.

[18] A. Solichin, “Pemrograman Web dengan PHP dan MySQL,”, e-book, tanpa penerbit, 2005



DOI: https://doi.org/10.22146/ijccs.57416

Article Metrics

Abstract views : 3555 | views : 2381

Refbacks

  • There are currently no refbacks.




Copyright (c) 2020 IJCCS (Indonesian Journal of Computing and Cybernetics Systems)

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.



Copyright of :
IJCCS (Indonesian Journal of Computing and Cybernetics Systems)
ISSN 1978-1520 (print); ISSN 2460-7258 (online)
is a scientific journal the results of Computing
and Cybernetics Systems
A publication of IndoCEISS.
Gedung S1 Ruang 416 FMIPA UGM, Sekip Utara, Yogyakarta 55281
Fax: +62274 555133
email:ijccs.mipa@ugm.ac.id | http://jurnal.ugm.ac.id/ijccs



View My Stats1
View My Stats2