Analisis Perbandingan Kinerja dan Kegunaan Aplikasi Pengelola Kata Sandi Closed-Source berdasarkan ISO/IEC 25010

Authors

  • Whisnu Yudha Aditama Program Studi Rekayasa Keamanan Siber, Politeknik Siber dan Sandi Negara
  • Ira Rosianal Hikmah Program Studi Rekayasa Keamanan Siber, Politeknik Siber dan Sandi Negara

DOI:

https://doi.org/10.29408/edumatic.v6i2.6697

Keywords:

comparative analysis, password manager apps, usability, performance

Abstract

The number of services used by internet users such as social media, online transportation, entertainment, and banking. this encourages the use of weak, short, and repetitive passwords that can trigger sensitive data leaks and impact individuals or organizations. These problems can be overcome with open-source and closed-source password manager applications to help users create, store, and manage passwords. Closed-source password manager apps have an advantage in the features they provide compared to open-source ones. The many providers of password manager applications make users face many choices so that the specifications of the password manager application need to be known as consideration for determining the application to be used. In this study, a comparative analysis was conducted to assess the advantages and disadvantages of several popular and widely used closed-source password management applications, including Lastpass, 1Password, and Keeper. Comparative analysis was carried out based on the performance, and usability of ISO/IEC 25010. This study used mixed methods. Quantitative data was obtained during performance testing, while qualitative data was obtained when distributing questionnaires to measure usability. The result is that, in terms of performance characteristics, each application has its own advantages in a different sub-characteristic. On usability characteristics, Keeper application excels in four sub characteristics while 1Password excels in two sub characteristics.

References

AgileBits. (2021). 1Password Security Design. In 1Password.com. https://1passwordstatic.com/files/security/1password-white-paper.pdf

Agustin, F., Kurniawan, H., Yusfrizal, Y., & Ummi, K. (2018). Comparative Analysis of Application Quality between Appserv and Xampp Webserver Using AHP Based on ISO/IEC 25010:2011. 2018 6th International Conference on Cyber and IT Service Management, CITSM 2018, Citsm, 1–5. https://doi.org/10.1109/CITSM.2018.8674345

Ariyani, S., Sudarma, M., & Wicaksana, P. A. (2021). Analysis of Functional Suitability and Usability in Sales Order Procedure to Determine Management Information System Quality. INTENSIF: Jurnal Ilmiah Penelitian Dan Penerapan Teknologi Sistem Informasi, 5(2), 234–248. https://doi.org/10.29407/intensif.v5i2.15537

Asosiasi Penyelenggara Jasa Internet Indonesia. (2019). Penetrasi & Profil Perilaku Pengguna Internet Indonesia 2018. Apjii, 51. www.apjii.or.id

Cabarcos, P. A., Marin, A., Palacios, D., Almenarez, F., & Diaz-Sanchez, D. (2016). Comparing Password Management Software: Toward Usable and Secure Enterprise Authentication. IT Professional, 18(5), 34–40. https://doi.org/10.1109/MITP.2016.81

Creswell, J. W., & Creswell, J. D. (2018). Research design. In H. et. al. Salmon (Ed.), Journal of investigative surgery: the official journal of the Academy of Surgical Research (5th editio, Issue 5). SAGE.

Decker, D. (2022). 26 Best Password Managers in 2022 Android, iOS, Web, Windows. Allthatsaas. https://allthatsaas.com/roundup/best-password-managers/

Dihni, V. A. (2022). Kasus Kebocoran Data di Indonesia Melonjak 143% pada Kuartal II 2022. Databoks. Diambil kembali dari https://databoks.katadata.co.id/datapublish/2022/08/09/kasus-kebocoran-data-di-indonesia-melonjak-143-pada-kuartal-ii-2022

Hovorushchenko, T., & Pomorova, O. (2016). Evaluation of mutual influences of software quality characteristics-based ISO 25010:2011. In Lviv (Ed.), 2016 XIth International Scientific and Technical Conference Computer Sciences and Information Technologies (CSIT) (pp. 80–83). IEEE. https://doi.org/10.1109/STC-CSIT.2016.7589874

ISO/IEC 25010 Systems and software engineering- Systems and software Quality Requirements and Evaluation (SQuaRE)- System and software quality models (1th ed.). (2011). ISO/IEC.

Knafo, J. (2021). 2020 Most Popular Password Managers Compared. Devolutions.Net. https://blog.devolutions.net/2020/05/update-2020-most-popular-password-managers-compared/

Lowry, L. (2019). Using LastPass to facilitate the gathering of usage statistics for e-resources: a case study. Journal of Electronic Resources Librarianship, 31(3), 144–151. https://doi.org/10.1080/1941126X.2019.1634951

Wilis, N., Zulfahmi, A. A., Budi, S., & Prasasti, R. (2021) Analisis Kualitas Aplikasi Psikotes Menggunakan Model ISO/IEC 25010. SITEKIN: Jurnal Sains, Teknologi dan Industri, 19(1), 55-60.

Luevanos, C., Elizarraras, J., Hirschi, K., & Yeh, J. H. (2017, December). Analysis on the security and use of password managers. In 2017 18th International Conference on Parallel and Distributed Computing, Applications and Technologies (PDCAT) (pp. 17-24). IEEE. https://doi.org/10.1109/PDCAT.2017.00013

Oesch, S., & Ruoti, S. (2020). That was then, this is now: A security evaluation of password generation, storage, and autofill in browser-based password managers. Proceedings of the 29th USENIX Security Symposium, 2165–2182. https://www.usenix.org/conference/usenixsecurity20/presentation/oesch

Oesch, T. S. (2021). An Analysis of Modern Password Manager Security and Usage on Desktop and Mobile Devices Desktop and Mobile Devices. https://trace.tennessee.edu/utk_graddiss/6670/

Schougaard, D., Dragoni, N., & Spognardi, A. (2016). Evaluation of professional cloud password management tools. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 9881 LNCS, 16–28. https://doi.org/10.1007/978-3-319-46963-8_2

Security, K. (2019). Keeper MSP Technical Whitepaper. In keepersecurity.com. https://www.keepersecurity.com/assets/pdf/Keeper-Managed-Service-Provider-Tech-WhitePaper.pdf

Suprapto, D. D. A., Fauziah, F., Fitri, I., & Hayati, N. (2020). Pengembangan Aplikasi Sistem Informasi Smart Register Online Berbasis Android Menggunakan Algoritma BruteForce. Edumatic: Jurnal Pendidikan Informatika, 4(1), 47–56. https://doi.org/10.29408/edumatic.v4i1.2106

Suryadi, D. Akbar., & Sulistiyani, E. (2022). Evaluation of Information Quality Using ISO/IEC 25010:2011 (Case Research: Menu Harianku Application). International Journal of Innovation in Enterprise System, 6(1), 143–156. https://doi.org/10.25124/ijies.v6i01.165

Downloads

Additional Files

Published

2022-12-20

Issue

Vol. 6 No. 2 (2022): Edumatic: Jurnal Pendidikan Informatika

Section

Articles

License

Semua tulisan pada jurnal ini adalah tanggung jawab penuh penulis. Edumatic: Jurnal Pendidikan Informatika bisa diakses secara free (gratis) tanpa ada pungutan biaya, sesuai dengan lisensi creative commons yang digunakan.

Lisensi Creative Commons
This work is licensed under a Lisensi Creative Commons Attribution-ShareAlike 4.0 International License.