RESTFUL API WITH AES-GCM AND XCHACHA20-POLY1305 SUPPORT IN POPULATION IDENTITY DATA MANAGEMENT (CASE STUDY OF GALUDRA VILLAGE)

Authors

  • Restu Oktafiandi Universitas Kebangsaan Republik Indonesia
  • Deni Suprihadi Universitas Kebangsaan Republik Indonesia

DOI:

https://doi.org/10.31848/justise.v3i2.4302

Keywords:

RESTful API, AES-GCM, XChaCha20-Poly1305, Cryptography, Citizen Data, Information Security

Abstract

The management of citizen identity data plays a critical role in governmental administration, including in Galudra Village, Cugenang District, Cianjur Regency. Traditionally, data recording has relied on Microsoft Excel, which, while adequate in the early stages, becomes inefficient as the population grows and the demand for fast, accurate, and secure services increases. This study develops a RESTful API integrated with AES-GCM and XChaCha20-Poly1305 cryptographic algorithms to enhance both security and efficiency in managing resident data. AES-GCM is employed to secure stored data, whereas XChaCha20-Poly1305 is applied to protect data during transmission. The system was developed using the waterfall model, with blackbox testing applied to validate its functionality. The implementation results indicate that the system effectively accelerates data processing and safeguards sensitive information. Network monitoring with Wireshark confirmed that all transmitted data is well-encrypted, making it inaccessible in its original form. Therefore, this solution not only addresses efficiency and security challenges at the village level but also aligns with Law Number 27 of 2022 concerning Personal Data Protection, and serves as a reference for implementing secure information technology in local government environments.

 

Keywords: RESTful API, AES-GCM, XChaCha20-Poly1305, Cryptography, Citizen Data, Information Security

References

Diah Puspitasari, Izzatusholekha Izzatusholekha, Sintia Kartini Haniandaresta, and Dalila Afif, “Urgensi Undang-Undang Perlindungan Data Pribadi Dalam Mengatasi Masalah Keamanan Data Penduduk,” J. Adm. Soc. Sci., vol. 4, no. 2, pp. 195–205, 2023, doi: 10.55606/jass.v4i2.403.

M. K. Naufal, F. Affrianto, and A. B. Cahyono, “Implementasi REST API Untuk Fitur Rencana Strategis Program Pada SIMPEDA,” J. Univ. Islam Indones., vol. 3, 2022.

N. Wachid Hidayatulloh, M. Tahir, H. Amalia, N. Afdlolul Basyar, A. Faizal Prianggara, and M. Yasin, “Mengenal Advance Encrytion Standard (AES) Sebagai Algoritma Kriptografi Dalam Mengamankan Data,” Digit. Transform. Technol., vol. Vol.03, no. No.1, pp. 1–10, 2023, [Online]. Available: https://jurnal.itscience.org/index.php/digitech/article/view/2293

I. J. Informatika, M. Teknologi, A. Susanti, B. A. Prasetiya, O. D. Pangesti, and L. D. Suryawati, “Perbandingan Kinerja Dan Keamanan Algoritma Kriptografi Modern Aes-Gcm Dengan Chacha20- Poly1305,” vol. 26, 2024, doi: 10.23969/infomatek.v26i2.19255

[6] C. Praveen and N Poly1305,” vol. 26, 2024, doi: 10.23969/infomatek.v26i2.19255. J.-P. Aumasson, Serious Cryptography A Practical Introduction to Modern Encryption. 2017. [Online]. Available: http://www.mypetskunk.com/uploads/1/0/6/1/106105481/seriouscrytograph. Roshan,

“Secure Data Using Encryption And Decryption Of Data,” vol. 11, no. 2, 2024.

K. R. Anggen Suari and I. M. Sarjana, “Menjaga Privasi di Era Digital: Perlindungan Data Pribadi di Indonesia,” J. Anal. Huk., vol. 6, no. 1, pp. 132–142, 2023, doi: 10.38043/jah.v6i1.4484.

A. Siking, M. H. Koniyo, and R. M. T. Yassin, “Unified Modelling Language (UML) dalam Perancangan Sistem Informasi Pelayanan Pengujian Material Berbasis Web Pada Dinas Pekerjaan Umum dan Penataan Ruang Provinsi Gorontalo,” J. Syst. Inf. Technol., vol. 3, no. 2, pp. 204–213, 2023.

M. Irfan Lutfi, I. Asrowardi, and A. R. Supriyatna, “Migrasi Database Mysql Ke Postgresql Pada Aplikasi Sistem Evaluasi Dosen Oleh Mahasiswa (EDOM) Jurusan Ekonomi Dan Bisnis,” ROUTERS J. Sist. dan Teknol. Inf., vol. 1, no. 1, pp. 19–36, 2022, doi: 10.25181/rt.v1i1.2699.

Hari Asgar, Budi Hartono, and Hasanuddin, “Rancang Bangun Restapiaplikasi Wesharesebagai Upaya Mempermudah Pelayanandonasi Kemanusiaan,” Ranc. Bangun Rest Api Apl. Weshare Sebagai Upaya Mempermudah Pelayanan Donasi Kemanus., vol. 4, no. 1, pp. 1–7, 2022, [Online].Available: https://jurnal.uts.ac.id/index.php/JINTEKS/article/view/1474

A. D. Ramadhan, Y. Prayudi, P. Studi, T. Informatika, F. T. Industri, and U. I. Indonesia, “Implementasi Object-Relational Mapping ( Orm ) Prisma Dalam Perancangan Restful Api Untuk Web Sda Division Di Pt” vol. 16, no. 2, pp. 256–264, 2025.

R. Sahrial, D. F. Fauzi, and E. Susilawati, “Pemanfaatan Json Untuk Menampilkan Data Realtime Covid-19 Dengan Model View Presenter,” J. Teknoinfo, vol. 16, no. 1, p. 144, 2022, doi: 10.33365/jti.v16i1.780.

S. Komputer, A. W. Syahroni, N. P. Dewi, N. Ramadhani, and B. Said, “Uji Keamanan Back end Aplikasi Berbasis Website Menggunakan Metode Black Box Testing,” vol. 19, no. 2, pp. 215–226, 2024.

I. P. A. E. Pratama and P. B. S. W. Putra, “Pengujian IaC Berbasis DevOps dan Ansible Menggunakan Metode Black Box Testing,” Fakt. Exacta, vol. 15, no. 2, pp. 84–91, 2022, doi: 10.30998/faktorexacta.v15i2.12039.

I. M. Chandra and I. K. Ari, “Penerapan Enkripsi dan Dekripsi Dokumen Data UMKM Menggunakan Algoritma ChaCha20-Poly1305,” vol. 3, no. November, pp. 117–126, 2024.

Fatchur Shofyan and Rizky Tahara Shita, “Implementasi Web Service Restful API dengan Autentikasi Personal Access Tokens dan Algoritma AES 256,” J. Ticom Technol. Inf. Commun., vol. 12, no. 3, pp. 108–114, 2024, doi: 10.70309/ticom.v12i3.130.

H. L. Haryadi, A. Sujjada, and D. S. Simatupang, “Perbandingan Rest Api Menggunakan Node Js Dan Php Pada Aplikasi Pemilihan Umum,” J. Ris. Sist. Inf. Dan Tek. Inform., vol. 8, no. 2, pp. 460–468, 2023, [Online]. Available: https://tunasbangsa.ac.id/ejurnal/index.php/jurasik

R. Maulana, A. Sulistyanto, and A. S. Rini, “Perancangan sistem informasi pengajuan dan pelaporan pembayaran tunjangan kinerja pada lembaga pemasyarakatan salemba berbasis web menggunakan Skema Rest API,” J. Manajamen Inform. Jayakarta, vol. 1, no. 4, p. 283, 2021, doi: 10.52362/jmijayakarta.v1i4.507.

S. J. Alharbi and T. Moulahi, “API Security Testing: The Challenges of Security Testing for Restful APIs,” Int. J. Innov. Sci. Res. Technol., vol. 8, no. 5, pp. 1485–1499, 2023, [Online]. Available: www.ijisrt.com

T. Veradania, “Perancangan Rest Api Data Masyarakat Kuantan Singingi Untuk Kepdrluan Sistem Pemerintahan Masa Depan,” J. Perencanaan, Sainns, Teknol. dan Komput., vol. 4, no. 2, pp. 1638–1647, 2021.

Downloads

Published

2025-12-26

How to Cite

[1]
R. Oktafiandi and D. . Suprihadi, “RESTFUL API WITH AES-GCM AND XCHACHA20-POLY1305 SUPPORT IN POPULATION IDENTITY DATA MANAGEMENT (CASE STUDY OF GALUDRA VILLAGE)”, Journal Data Science, Technology, Informatics and Security, vol. 3, no. 2, pp. 1–11, Dec. 2025.

Issue

Vol. 3 No. 2 (2025): Journal Data Science, Technology, Informatics and Security (December 2025)

Section

Articles

License

Copyright (c) 2025 Restu Oktafiandi, Deni Suprihadi

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.