Rabbani, Muhamad Rafi (2025) Rancang Bangun Sistem Manajemen Akses SSO Untuk Layanan Terpadu (S4RAS, Solution for Remote Area Services). Other thesis, Institut Teknologi Sepuluh Nopember.
![[thumbnail of 5022211201-Undergraduate_Thesis.pdf]](http://repository.its.ac.id/style/images/fileicons/text.png) |
Text
5022211201-Undergraduate_Thesis.pdf - Accepted Version Restricted to Repository staff only Download (7MB) | Request a copy |
Abstract
Wilayah 3T (Tertinggal, Terluar, dan Terbelakang) di Indonesia sering menghadapi kendala dalam mengakses layanan digital terintegrasi akibat keterbatasan infrastruktur telekomunikasi. Penelitian ini merancang, mengimplementasikan, dan mengevaluasi sistem manajemen akses terpusat untuk platform S4RAS (Solution for Remote Area Services) dengan menggunakan Single Sign-On (SSO). Sistem ini menyederhanakan proses autentikasi dan otorisasi pengguna untuk layanan utama seperti Learning Management System (Moodle), Storage Area Network (Nextcloud), IPTV (Jellyfin), dan Voice over IP (Asterisk) melalui satu penyedia identitas. Sistem SSO dikembangkan menggunakan Keycloak yang mendukung fitur protokol autentikasi, federasi identitas, manajemen sesi dan token, serta pengelolaan pengguna dan aplikasi client secara terpusat melalui mekanisme Role-Based Access Control (RBAC). Evaluasi dilakukan terhadap tiga aspek utama: keamanan, performa, dan ketahanan sistem. Pengujian keamanan dengan alat seperti OWASP ZAP, OpenVAS, NMAP, dan SSLYZE menunjukkan tidak adanya kerentanan kritikal. Sementara itu, uji performa menggunakan Postman, Prometheus, dan Locust menunjukkan sistem yang responsif, stabil, dan berlatensi rendah. Analisis bandwidth juga menunjukkan sistem tetap efisien meskipun dijalankan pada jaringan berkapasitas rendah. Hasil penelitian ini membuktikan bahwa sistem SSO yang diterapkan mampu menjadi solusi manajemen akses yang skalabel bagi komunitas di wilayah 3T, serta mendukung perluasan inklusi digital di daerah yang belum terlayani secara optimal.
=======================================================================================================================================
The 3T regions (Underdeveloped, Remote, and Outermost regions) in Indonesia frequently encounter significant barriers in accessing integrated digital services due to inadequate telecommunications infrastructure. This study presents the design, implementation, and evaluation of a centralized access management system for the S4RAS (Solution for Remote Area Services) platform utilizing a Single Sign-On (SSO) mechanism. The proposed system simplifies user Authentication and authorization processes across key services, including the Learning Management System (Moodle), Storage Area Network (Nextcloud), IPTV (Jellyfin), and Voice over IP (Asterisk), through an Identity Provider. The SSO framework is developed using Keycloak, which offers robust support for Authentication protocols, identity federation, session and token management, and centralized administration of users and client applications via Role-Based Access Control (RBAC). System evaluation focuses on three aspects: security, performance, and sustainability. Security assessments conducted using OWASP ZAP, OpenVAS, NMAP, and SSLYZE detected no critical vulnerabilities. Performance testing with Postman, Prometheus, and Locust, indicates that the system exhibits low latency, stability, and responsiveness. Additionally, bandwidth analysis confirms the system's operational efficiency under low-capacity network conditions.This research concludes that the implemented SSO system improves the security, performance, and sustainability of the S4RAS platform. It provides a scalable access solution for remote communities, supporting broader digital inclusion in underserved areas.
Actions (login required)
 |
View Item |