Pengamanan M-Commerce Menggunakan One Time Password Metode Pseudo Random Number Generator (PRNG)
Abstract
Mobile commerce or m-commerce is an electronic trading system (e-commerce) that uses mobile equipment such as mobile phones, smart phones, PDAs, and notebooks. With the growth of smartphone users throughout the world, many electronic commerce business owners also provide m-commerce applications to make it easier for their customers to make transactions. In addition to providing convenience for users, m-commerce application providers must be able to ensure that customers can transact safely. Security risks are one of the major obstacles in the development of electronic commerce systems. Therefore, this research applies the method of securing m-commerce applications using one time password (OTP) generated by the Pseudo Random Number Generator (PRNG) method. This study also modified the PRNG algorithm by doing three bit shifting processes and adding encryption algorithms. The test results show that the system can generate an OTP that is always unique for each transaction. The results of this study are useful for m-commerce application developers to secure their applications.
References
C. M. Annur, “Survei APJII: Penetrasi Pengguna Internet di Indonesia Capai 64,8%,” Katadata.co.id, 2019. [Daring]. Tersedia pada: https://katadata.co.id/berita/2019/05/16/survei-apjii-penetrasi-pengguna-internet-di-indonesia-capai-648.
N. A. Rozama, A. L. Kusumatrisna, Z. Ilmiyah, T. Sutarsih, G. Siswayu, dan A. Syakilah, Statistik E-Commerce 2019. Jakarta: Badan Pusat Statistik, 2019.
WikipediaID, “M-Dagang,” Wikipedia.org, 2020. [Daring]. Tersedia pada: https://id.wikipedia.org/wiki/M-dagang. [Diakses: 20-Jun-2020].
A. M. R. Wajong dan C. R. Putri, “Keamanan dalam Electronic Commerce,” ComTech, vol. 1, no. 2, hal. 867–874, 2010.
C. Hanifurohman dan D. D. Hutagalung, “Analisa Keamanan Aplikasi Mobile E-Commerce Berbasis Android Menggunakan Mobile Security Framework,” in Seminar Nasional Enhancing Innovations for Sustainable Development, 2020.
RiskBased Security, “2020 Q1 Report Data Breach QuickView,” 2020.
K. K. Kumbhare dan K. V. Warkar, “A Review on Noisy Password, Voiceprint Biometric and One-Time-Password,” in International Conference on Information Security & Privacy, 2016, vol. 78, hal. 382–386.
S. Ma et al., “An Empirical Study of SMS One-Time Password Authentication in Android Apps,” in ACSAC ’19: Proceedings of the 35th Annual Computer Security Applications Conference, 2019, hal. 339–354.
H. A. Chandra, Y. I. Wijaya, dan H. Budiman, “Algoritma One Time Password pada Sistem Informasi Penerimaan Siswa Baru Online SMP H.A. Johansyah.A Banjarmasin,” Technologia, vol. 10, no. 4, hal. 207–211, 2019.
D. V. S. Y. Sakti, N. Agani, dan M. Hardjianto, “Pengamanan Sistem Menggunakan One Time Password Dengan Pembangkit Password Hash SHA-256 dan Pseudo Random Number Generator (PRNG) Linear Congruential Generator (LCG) di Perangkat Berbasis Android,” J. BIT, vol. 13, no. 1, hal. 1–10, 2016.
G. H. Editya dan S. Mulyati, “Aplikasi Mobile One Time Password Menggunakan Algoritma MD5 dan SHA1 untuk Meningkatkan Keamanan Website,” SKANIKA, vol. 1, no. 2, hal. 618–623, 2018.
A. Hangga dan E. Prabowo, “Modifikasi Linear Congruential Generator untuk Sistem Pengacakan Soal pada Computer Based Test ( CBT ),” J. Tek. Elektro, vol. 8, no. 2, hal. 47–49, 2016.
S. Gharge, H. Brijwani, M. Pugrani, G. Sukhwani, dan D. Udherani, “Percon8 Algorithm for Random Number Generation,” Int. J. Eng. Res. Appl., vol. 4, no. 5, hal. 54–60, 2014.
A. Solichin, M. A. Putra, dan K. Diniari, “RESTful Web Service Optimization with Compression and Encryption Algorithm,” 2018 Int. Semin. Appl. Technol. Inf. Commun., hal. 333–337, 2018.
Copyright (c) 2020 Rabit : Jurnal Teknologi dan Sistem Informasi Univrab

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
1. Copyright of all journal manuscripts is held by the RABIT: Jurnal Teknologi dan Sistem Informasi Univrab
2. Formal legal provisions to access digital articles of electronic journal are subject to the provision of the Creative Commons Attribution-ShareAlike license (CC BY-NC-SA), which means that RABIT: Jurnal Teknologi dan Sistem Informasi Univrab is rightful to keep, transfer media/format, manage in the form of databases, maintain, and publish articles.
3. Published manuscripts both printed and electronic are open access for educational, research, and library purposes. Additionally, the editorial board is not responsible for any violations of copyright law.
licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.


