https://jurnal.untag-sby.ac.id/index.php/jitsc Department of Information Systems and Technology, Universitas 17 Agustus 1945 Surabaya en-US Journal of Information Technology and Cyber Security 2987-3878 <p>&nbsp;</p> <p>Copyright Notice based on COPE (Committee on Publication Ethics) for JITCS: Journal of Information Technology and Cyber Security</p> <ol> <li class="show"> <p><strong>Ownership and Copyright:</strong></p> <ol> <li class="show"><strong>JITCS</strong>: Journal of Information Technology and Cyber Security respects the intellectual property rights of authors. The copyright for individual articles published in JITCS is retained by the respective authors, unless otherwise specified.</li> <li class="show">The articles published in JITCS are licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License (<a title="CC BY-NC-ND 4.0" href="https://creativecommons.org/licenses/by-nc-nd/4.0/" target="_blank" rel="noopener">CC BY-NC-ND 4.0</a>), which permits use and distribution in any medium, provided the original work is properly cited, the use is non-commercial, and no modifications or adaptations are made.</li> <li class="show">JITCS serves as the initial publisher of the articles, providing them with the first publication platform.</li> </ol> </li> <li class="show"> <p><strong>Permissions and Usage:</strong></p> <ol> <li class="show"><strong>Distribution for Non-Commercial Purposes:</strong> Permitted: Users are allowed to distribute the article for non-commercial purposes, provided the original work is properly cited and no modifications or adaptations are made.</li> <li class="show"><strong>Distribution for Commercial Purposes:</strong> Not Permitted: The article may not be distributed for any commercial purposes without obtaining prior written permission from the author(s).</li> <li class="show"><strong>Inclusion in a Collective Work (e.g., Anthology) for Non-Commercial Purposes:</strong> Permitted: Users are allowed to include the article in a collective work, such as an anthology, as long as the use is non-commercial and the work remains unchanged.</li> <li class="show"><strong>Inclusion in a Collective Work for Commercial Purposes:</strong> Not Permitted: The article may not be included in any collective work or anthology intended for commercial purposes without prior permission from the author(s).</li> <li class="show"><strong>Creation and Distribution of Revised Versions, Adaptations, or Derivative Works (e.g., Translation) for Non-Commercial Purposes:</strong> Not Permitted: Users may not create or distribute revised versions, adaptations, or derivative works, including translations, for non-commercial purposes.</li> <li class="show"><strong>Creation and Distribution of Revised Versions, Adaptations, or Derivative Works for Commercial Purposes:</strong> Not Permitted: Users may not create or distribute revised versions, adaptations, or derivative works, including translations, for commercial purposes.</li> <li class="show"><strong>Text or Data Mining for Non-Commercial Purposes:</strong> Permitted: Users are permitted to engage in text or data mining of the article for non-commercial research purposes, provided the original work is properly attributed.</li> <li class="show"><strong>Text or Data Mining for Commercial Purposes:</strong> Not Permitted: Users may not engage in text or data mining of the article for commercial purposes without obtaining explicit permission from the author(s).</li> </ol> </li> <li class="show"> <p><strong>Attribution and Citation:</strong></p> <ol> <li class="show">Proper attribution and citation of the published work should be provided when using or referring to content from JITCS. This includes clearly indicating the authors, the title of the article, the journal name (JITCS), the volume/issue number, the publication year, and the article's DOI (Digital Object Identifier) when available.</li> <li class="show">When adapting or modifying the published content, proper attribution to the original source should be given, and the adapted or modified content should be shared under the same CC BY-NC-ND 4.0 license.</li> </ol> </li> <li class="show"> <p><strong>Plagiarism and Copyright Infringement:</strong></p> <ol> <li class="show">JITCS considers plagiarism and copyright infringement as serious ethical violations. Authors are responsible for ensuring that their submitted work is original and does not infringe upon the copyright or intellectual property rights of others.</li> <li class="show">Any allegations of plagiarism or copyright infringement will be investigated promptly and thoroughly. If proven, appropriate actions, including rejection of the manuscript, retraction of the published article, or other corrective measures, will be taken.</li> </ol> </li> <li class="show"> <p><strong>Open Access Licensing:</strong></p> <ol> <li class="show">JITCS supports open access publishing and encourages authors to consider publishing their work under the CC BY-NC-ND 4.0 license to promote the dissemination and use of knowledge in the field of information technology and cyber security.</li> <li class="show">The specific terms and conditions of the CC BY-NC-ND 4.0 license will be clearly indicated on the published articles.</li> </ol> </li> <li class="show"> <p><strong>Policy Review:</strong> This Copyright Notice will be periodically reviewed and updated to ensure its continued relevance and compliance with copyright laws, ethical standards, and open access principles in scholarly publishing. Any updates or revisions to the notice will be communicated to the relevant stakeholders.</p> </li> </ol> <p>By adhering to this Copyright Notice, JITCS aims to protect the rights of authors, promote proper attribution and citation practices, and facilitate the responsible and legal use of the published content in accordance with the CC BY-NC-ND 4.0 license.</p> https://jurnal.untag-sby.ac.id/index.php/jitsc/article/view/12216 <p>The increasing reliance on digital platforms for academic and governmental purposes necessitates robust cybersecurity measures. Consequently, identifying vulnerability is critical to ensuring data security and providing actionable recommendations for cybersecurity officers. Platforms like Sinta (Science and Technology Index), which focus on collecting peer-reviewed papers and maintaining researcher’s research records, represents significant governmental contributions in academia. Cybersecurity awareness is demonstrated through events organized to evaluate the vulnerability of the platform, enabling researchers to access its security and report potential issues. This study addresses these concerns by conducting system penetration testing using the OWASP and Burp Suite Framework, focusing on identifying five critical vulnerabilities. The evaluation examines issues, such as sensitive data exposure in API responses, error log disclosures, email enumeration, and improper access to system files. The results reveal that the platform suffers from multiple levels of security vulnerabilities, prompting recommendations for authorities to take actions to mitigate potential risks effectively.&nbsp;</p> Supangat Supangat Anis Rahmawati Amna Mochamad Yovi Fatchur Rochman ##submission.copyrightStatement## http://creativecommons.org/licenses/by-nc-nd/4.0 2025-03-03 2025-03-03 10.30996/jitcs.12216 https://jurnal.untag-sby.ac.id/index.php/jitsc/article/view/12617 Higher education is an important phase in an individual's academic development, but it is often characterized by challenges such as academic pressure, time management, and student mental health. To overcome these problems, this research aims to develop a technology-based Counseling Expert System with a Forward Chaining approach to detect student problems and provide relevant solutions. The system is designed and implemented as a web-based platform that can be accessed anytime and anywhere, allowing students to answer questions related to the problems faced by students. The answers are processed in a knowledge base that is integrated with an inference engine to produce diagnosis and solution recommendations. The results of system testing using 30 data samples show results that are in accordance with expert judgment. This expert system can identify six types of student problems, such as laziness, skipping classes, adaptation difficulties, difficulty doing final assignments, decreased Grade Point Average (GPA or IP), and potential dropout, by considering 32 causal factors grouped into academic, time management, emotional, and social environment categories. This research proves that the Forward Chaining-based Counseling Expert System is effective as a flexible solution to support student well-being and better student academic achievement. Nisrina Salsabil Rahmawati Suastika Yulia Riska ##submission.copyrightStatement## http://creativecommons.org/licenses/by-nc-nd/4.0 2025-05-07 2025-05-07