The increasing digitization of micro, small, and medium enterprises (MSMEs) in e-commerce brings critical challenges in protecting customer data. Despite the widespread use of encrypted communication protocols such as HTTPS and TLS for secure data transmission, many MSMEs still fail to implement encryption at the data storage level. This means that once the data reaches the server, it is often stored in unencrypted form within the database. This study implemented AES-128 encryption at the field-level in a Laravel-based e-commerce system to protect MSME customer data. The encryption was applied to sensitive data fields and tested through black-box testing and benchmark analysis. A dataset of 10,000 records was used to compare performance between plaintext and encrypted operations. Results showed an average encryption overhead of 0.0409 seconds, indicating minimal impact on performance. The encryption-decryption process consistently returned correct outputs across all trials. This solution offers an affordable and scalable encryption model for MSMEs, enhancing customer data security without relying on external tools or infrastructure.

AES-128; E-Commerce; Encryption; Laravel; MSMEs

Eno, “Meningkat Pesat Tahun 2018, Pertumbuhan UMKM di Sumsel Tumbuh Tipis 2019,” Urban Id. [Online]. Available: https://kumparan.com/urbanid/meningkat-pesat-tahun-2018-pertumbuhan-umkm-di-sumsel-tumbuh-tipis-2019-1ssS5z0rxYI

“Laporan Kinerja Kemenkop UKM,” Kementerian Koperasi dan Usaha Kecil dan Menengah Republik Indonesia. [Online]. Available: https://djpb.kemenkeu.go.id/kppn/lubuksikaping/id/data-publikasi/artikel/3134-kontribusi-umkm-dalam-perekonomian-indonesia.html

N. Noerchoidah and N. Nurdina, “Media Website Sebagai Solusi Promosi Penjualan Pada Umkm,” J. Kreat. dan Inov. (Jurnal Kreanova), vol. 2, no. 1, pp. 1–6, 2022, doi: 10.24034/kreanova.v2i1.5212.

Ghada Taher, “E-Commerce: Advantages and Limitations,” Int. J. Acad. Res. Account. Financ. Manag. Sci., vol. 11, no. 2, pp. 202–221, 2021, doi: 10.6007/IJARAFMS.

O. Challenges, “A_Review_of_Blockchains_Role_in_E-Commerce_Transa.pdf,” 2024.

X. Liu et al., “Cyber security threats: A never-ending challenge for e-commerce,” Front. Psychol., vol. 13, no. October, pp. 1–15, 2022, doi: 10.3389/fpsyg.2022.927398.

V. Jain, B. Malviya, and S. Arya, “An Overview of Electronic Commerce (e-Commerce),” J. Contemp. Issues Bus. Gov., vol. 27, no. 3, 2021, doi: 10.47750/cibg.2021.27.03.090.

Z. Wu, S. Shen, H. Zhou, H. Li, C. Lu, and D. Zou, “An effective approach for the protection of user commodity viewing privacy in e-commerce website,” Knowledge-Based Syst., vol. 220, p. 106952, 2021, doi: 10.1016/j.knosys.2021.106952.

N. Mohammad, “Encryption Strategies for Protecting Data in SaaS Applications,” no. March 2022, 2022.

M. A. Hassan, Z. Shukur, and M. K. Hasan, “An efficient secure electronic payment system for e-commerce,” Computers, vol. 9, no. 3, pp. 1–13, 2020, doi: 10.3390/computers9030066.

R. M. Mohammed, “Mitigating Man-in-the-middle Attack In Online Payment System Transaction Using Polymorphic AES Encryption Algorithm,” vol. 14, no. 3, pp. 102–112, 2023.

Q. Zhang, “An Overview and Analysis of Hybrid Encryption: The Combination of Symmetric Encryption and Asymmetric Encryption,” IEEE, pp. 616–622, 2021, doi: 10.1109/CDS52072.2021.00111.

A. Fadlil, I. Riadi, and A. Nugrahantoro, “Data Security for School Service Top-Up Transactions Based on AES Combination Blockchain Technology,” Lontar Komput. J. Ilm. Teknol. Inf., vol. 11, no. 3, p. 155, 2020, doi: 10.24843/lkjiti.2020.v11.i03.p04.

H. Sulaimon, N. O.-F. of N. and Applied, and undefined 2024, “Design and implementation of secured e-commerce digital learning for the educational system in Nigeria,” Fnasjournals.Com, vol. 5, no. 4, pp. 23–32, 2024, [Online]. Available: https://fnasjournals.com/index.php/FNAS-JMSE/article/view/336

P. Goyal, P. Sharma, M. Sharma, and A. Pareek, “The Importance of Data Encryption in Data Security,” J. Nonlinear Anal. Optim., vol. 13, no. 01, pp. 01–11, 2023, doi: 10.36893/jnao.2022.v13i02.001-011.

P. K. Joshi, “Azure Functions in Payment Gateways : A Serverless Approach to Financial Journal of Artificial Intelligence & Cloud Computing Azure Functions in Payment Gateways : A Serverless Approach to Financial Systems,” vol. 2023, no. October, 2024, doi: 10.47363/JAICC/2023(2)390.

V. Komandla, “Safeguarding Digital Finance : Advanced Cybersecurity Strategies for Protecting Customer Data in Fintech Safeguarding Digital Finance : Advanced Cybersecurity Strategies for Protecting Customer Data in Fintech,” no. October, 2024, doi: 10.5281/zenodo.13864693.