Pengamanan Layanan Private Cloud Storage Menggunakan HTTPS, IPTables dan SSTP

  • I Putu Hariyadi
  • Raisul Azhar
Keywords: Cloud Storage, HTTPS, IPTables, SSTP, Nextcloud

Abstract

STMIK Bumigora is a computer college in the province of West Nusa Tenggara (NTB). The spread of data from 12 (twelve) sections on each staff computer or section head causes data search both within and between sections to be inefficient. The condition underlies the prototype development of Nextcloud-based Private Cloud Storage system as centralized data storage for each part. This system has been successfully created and tested and received a positive response for immediate implementation. But PusTIK as part of managing Information and Communication Technology (ICT) is still considering to delay implementation until security is done to access and transfer data between client to Private Cloud Storage Server. In addition there is also a need to remain able to access to Cloud Storage services from the Internet, especially when the academic community is on duty out of town or out of campus. The implementation of Secure Socket Tunneling Protocol (IPTables) and Secure Socket Tunneling Protocol (VPN) based Server Protocol Secure (HTTPS) and IPTables on Gateway Routers can help solve the problems encountered. Based on the analysis there is a known test results HTTPS can secure access and transfer data from client to Cloud Storage Server. While IPTables can protect Private Cloud Storage server from unwanted traffic so it can keep the service available. In addition, SSTP can bridge the need for access and security of communications to Private Cloud Storage service from the Internet.

References

[1] NIST. 2013. NIST Cloud Computing Standards Roadmap. https://www.nist.gov/sites/ default/files/documents/itl/cloud/NIST_SP- 500-291_Version- 2_2013_June18_FINAL.pdf. Diakses pada tanggal 4Oktober 2017
[2] Kun, L dan Long-jiang D. 2012. Research on Cloud Data Storage Technology and Its Architecture Implementation. Procedia Engineering International Workshop on Information and Electronics Engineering. Volume 29. Hal. 133-137
[3] Nextcloud. 2017. Nextcloud 12 User Manual Introduction. https://docs.nextcloud.com/ server/12/user_manual/index.html. Diakses tanggal 4 Oktober 2017
[4] Google. 2017. Secure your site with HTTPS. https://support.google.com/webmasters/answer/ 6073543?hl=en. Diakses tanggal 4 Oktober 2017
[5]Pablo Neira Ayuso. 2017. "The netfilter.org "iptables" project". https://www.netfilter.org/ projects/iptables/index.html. Diakses tanggal 4 Oktober 2017
[6] Microsoft. 2007. SSTP Remote Access Stepby-Step Guide: Deployment. https://technet.microsoft.com/enus/library/cc 731352(v=ws.10).aspx. Diakses tanggal 4 Oktober 2017
[7] James E.Goldman dan Phillip T. Rawles. 2004. The Network Development Life Cycle. http://higheredbcs.wiley.com/legacy/college/ goldman/0471346403/lecture_slides/ch10.pp t?newwindow=true. Diakses tanggal 4Oktober 2017
[8] Deris Stiawan. 2009. Fundamental Internetworking Development & Life Cycle. http://unsri.ac.id/upload/arsip/network_devel opment_cycles.pdf, Diakses tanggal 4Oktober 2017
Published
2017-10-10
Section
Articles