A COBIT-Based Critical Asset Evaluation of Electronic Certificate Management in Central, Urban, and Rural Government Agencies: Study and Analysis

Yulandi, Yohan Suryanto, Kalamullah Ramli

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

The authority for digital procurement certification in Indonesia, known as Otoritas Sertifikat Digital Pengadaan Secara Elektronik (OSD PSE), is provided by a unit at National Cyber and Crypto Agency. This is an in-demand service for many sectors that require secure electronic procurement. Our study analyzes and identifies the vulnerability of electronic certificate assets using COBIT 5.0 framework. There are four assets that are at high risk when OSD PSE services are interrupted: OSD PSE Private Key Compromise, Spamkodok Auditor Application, EJBCA Application, and Hardware Security Module. We evaluated these assets using COBIT 5's goals cascade mechanism, which is designed to achieve enterprise and IT goals and to determine domain processes. Based on our evaluation, the EDM03, APO12, APO13, and BAI06 domain processes require deeper study. Additionally, we identified 10 secondary priority processes.

Original languageEnglish
Title of host publicationProceeding - 2018 International Conference on ICT for Rural Development
Subtitle of host publicationRural Development through ICT: Concept, Design, and Implication, IC-ICTRuDEv 2018
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages98-104
Number of pages7
ISBN (Electronic)9781538677810
DOIs
Publication statusPublished - 3 May 2019
Event2018 International Conference on ICT for Rural Development, IC-ICTRuDEv 2018 - Bali, Indonesia
Duration: 17 Oct 201818 Oct 2018

Publication series

NameProceeding - 2018 International Conference on ICT for Rural Development: Rural Development through ICT: Concept, Design, and Implication, IC-ICTRuDEv 2018

Conference

Conference2018 International Conference on ICT for Rural Development, IC-ICTRuDEv 2018
Country/TerritoryIndonesia
CityBali
Period17/10/1818/10/18

Keywords

  • COBIT 5
  • Domain Process
  • Enterprise Goals
  • IT Goals

Fingerprint

Dive into the research topics of 'A COBIT-Based Critical Asset Evaluation of Electronic Certificate Management in Central, Urban, and Rural Government Agencies: Study and Analysis'. Together they form a unique fingerprint.

Cite this