Journal ArticleOPEN ACCESS

An attack-defence tree of e-exam system

International Journal of Emerging Technologies in Learning (2019) 14(23) 251-259
DOI: 10.3991/ijet.v14i23.11088
4Citations
Citations of this article
23Readers
Mendeley users who have this article in their library.

Abstract

Not only does the electronic-examination (e-exam) system transform the paper-based into the electronic-based examination, but it also brings about security challenges that must be resolved to guarantee the trust of its users. This paper aims at analysing security challenges of an e-exam system and proposing a solution using Attack and Defence Tree method. The attack tree scheme was defined by risk assessment methods and then evaluated by penetration test experiments against a server running the e-exam application. A proposed defence tree scheme against the identified attack tree was presented as the main contribution of this research. This contribution can be used as a guideline to plan similar e-exam systems and can be served as a starting point for future research towards a comprehensive attack-defence tree of the secure e-exam system.

Author supplied keywords

Cite

CITATION STYLE

APA

Rosmansyah, Y., Ritonga, M. H., & Hardi, A. B. (2019). An attack-defence tree of e-exam system. International Journal of Emerging Technologies in Learning, 14(23), 251–259. https://doi.org/10.3991/ijet.v14i23.11088

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free