Improve Data Security with Penetration Testing API
Alodokter
Alodokter is a digital health platform developed by PT. Sumo Technology Solutions. This platform works as an intermediary that connects users with health service providers such as doctors or hospitals.
The Alodokter application was developed with 5 main features designed in order to meet a variety of user needs, such as chatting with doctors, making consultation appointments with hospitals, health insurance, searching/shopping for health related products, as well as providing informative articles on health-related topics. These features are available in both web and mobile versions accessible through various devices.
Through this service, Alodokter has managed to gain around 26 million active users per month. Alodokter is also trusted as a competent health platform by medical practitioners, evidenced by the fact that there are more than 30 thousand doctors who have joined.
BACKGROUND
Along with advances in technology, a variety of important medical related activities can be conducted online completely through digital means. Through this health platform, it is hoped that users will be able to come across practical solutions to their medical issues in an easier and systematized manner.
It is important to note though that this trend of digitization can potentially bring about an overall loss if it is not accompanied by a robust and secure security system. This is due to the fact that digital health platforms come with inherent system vulnerabilities; such liabilities can mean potentially more cyber-attacks that will harm patients, doctors, or other third parties.
As a solution, PT. Sumo Teknologi has decided to cooperate with LOGIQUE DIGITAL INDONESIA in order to perform API penetration testing. This is done in order to ensure that the Alodokter system is kept completely safe. Keep in mind that API exploits are one of the most common vectors of digital hacking. When attackers successfully exploit the API, they can then gain access to all the data stored within the system. By conducting penetration testing on the system’s API, the company can properly ensure that any sensitive data stored within will be secured against instances of unauthorized access.
Challenge
Business challenges faced by PT. Sumo Technology Solutions specifically pertain to the ability to provide a secure and robust digital medical platform, due to the system being vulnerable to potential cyber-attacks. This occurs because such medical platforms hold millions of personal user/patient data within their system; such data ranges from general medical information, financial data such as credit card and bank account numbers, as well as other sensitive information.
Additionally, Alodokter in providing its services also cooperates with several third parties such as hospitals and pharmacies. Therefore, any activities pertaining to cybersecurity risk management must also be carried out in order to protect important data from third parties connected to the Alodokter system.
Alodokter API Penetration Testing Solution
An API constitutes a set of code that enables the transmission of data between systems, both internally and externally. Penetration testing is done in order to locate any security holes that might be potentially exploited by hackers who seek to bypass the authorization process.
LOGIQUE itself uses two penetration testing strategies, namely the Black Box and Gray Box methods. When carrying out the Black Box strategy, testing is carried out without having any information about the target system. Meanwhile, when conducting the Gray Box strategy, the examiner will be armed with access and information as a user. These two strategies were chosen to examine the system as a whole.
It is hoped that through this regimen of penetration testing the company will be able to identify any security vulnerabilities that may exist as early as possible. Thus repairs can be made immediately before being exploited by maliciously motivated parties. In this way the company can ensure that their data is stored safely within the system.
Results Obtained
Performing security risk management on this medical platform will not only protect the overall business itself but will also secure the welfare and privacy of its users/patients. From the instances of penetration testing conducted by LOGIQUE DIGITAL INDONESIA, Alodokter can enjoy the benefits of working with a much more security system. Alodokter has obtained a variety of security solutions from LOGIQUE; this has allowed the systems they run to be able to avoid any potential instances of hacking.
PT. Sumo Teknologi Solusi is currently satisfied with the services provided by LOGIQUE DIGITAL INDONESIA. Through the API penetration testing services that have been offered, the health platform, as a whole, will be increasingly trusted by its users and third parties.
If you prefer to be contacted via WhatsApp, please enter your phone number in the form on the right.
You will then be redirected to WhatsApp. If you prefer to be contacted by email from LOGIQUE,
please use the inquiry form available through the link below. Other contact details are as follows.
LOGIQUE's IT/DX consultant will contact you shortly.
Please wait a little longer.
In the meantime, if you review the information below or answer the survey, it will help us determine
the best person to contact you, making the process of confirming or discussing your inquiry smoother.
We appreciate your cooperation.
LOGIQUE 
