1. Identifying key activities, artifacts and roles in agile engineering of secure software with hierarchical clusteringAnže Mihelič, Tomaž Hovelja, Simon Vrhovec, 2023, original scientific article Abstract: Different activities, artifacts, and roles can be found in the literature on the agile engineering of secure software (AESS). The purpose of this paper is to consolidate them and thus identify key activities, artifacts, and roles that can be employed in AESS. To gain initial sets of activities, artifacts, and roles, the literature was first extensively reviewed. Activities, artifacts, and roles were then cross-evaluated with similarity matrices. Finally, similarity matrices were converted into distance matrices, enabling the use of Ward’s hierarchical clustering method for consolidating activities, artifacts, and roles into clusters. Clusters of activities, artifacts, and roles were then named as key activities, artifacts, and roles. We identified seven key activities (i.e., security auditing, security analysis and testing, security training, security prioritization and monitoring, risk management, security planning and threat modeling; and security requirements engineering), five key artifacts (i.e., security requirement artifacts, security repositories, security reports, security tags, and security policies), and four key roles (i.e., security guru, security developer, penetration tester, and security team) in AESS. The identified key activities, artifacts, and roles can be used by software development teams to improve their software engineering processes in terms of software security.
Keywords: secure software development, security engineering, agile methods, agile development, software development, software engineering, software security, application security, cybersecurity, cyber resilience
Published in DKUM: 29.11.2023; Views: 52; Downloads: 1
 Full text (557,17 KB)
This document has many files! More... |
2. Agile development of secure software for small and medium-sized enterprisesAnže Mihelič, Simon Vrhovec, Tomaž Hovelja, 2023, original scientific article Abstract: Although agile methods gained popularity and became globally widespread, developing secure software with agile methods remains a challenge. Method elements (i.e., roles, activities, and artifacts) that aim to increase software security on one hand can reduce the characteristic agility of agile methods on the other. The overall aim of this paper is to provide small- and medium-sized enterprises (SMEs) with the means to improve the sustainability of their software development process in terms of software security despite their limitations, such as low capacity and/or financial resources. Although software engineering literature offers various security elements, there is one key research gap that hinders the ability to provide such means. It remains unclear not only how much individual security elements contribute to software security but also how they impact the agility and costs of software development. To address the gap, we identified security elements found in the literature and evaluated them for their impact on software security, agility, and costs in an international study among practitioners. Finally, we developed a novel lightweight approach for evaluating agile methods from a security perspective. The developed approach can help SMEs to adapt their software development to their needs.
Keywords: secure software development, security engineering, agile, small and medium sized enterprises, software development management, security
Published in DKUM: 29.11.2023; Views: 35; Downloads: 3
Full text (2,58 MB)
This document has many files! More... |
3. Criminal Justice and Security in Central and Eastern Europe : the United Nations sustainable development goals - rural and urban safety ans security perspectives2023 Abstract: The fourteenth international biennial conference Criminal Justice and Security in Central and Eastern Europe, organised by the Faculty of Criminal Justice and Security, University of Maribor (UM FCJS) on 12–14 September 2023, is subtitled The United Nations Sustainable Development Goals – Rural and Urban Safety and Security Perspectives and addresses current challenges related to the UN SDGs and the provision of security in local communities. Topics of the conference are related to a research project of the UM FCJS on local safety and security – rural and urban perspectives (2019-20124) based on the UN SDGs that aim at the development of democratic societies trying to achieve seventeen ambitious goals globally. The conference is also a milestone that signifies thirteen years of membership of the UM FCJS in the United Nation’s Academic Impact Network (UNAI). The book of abstracts includes more than sixty abstracts of papers presented at the conference. The main topics of this year’s conference are rural criminology, criminal justice, policing, covid-19, crime, criminality, crime prevention, perception of crime, crime analysis, safety, security, community (oriented) policing, victimology and penology. Thanks for this great academic event go to the programme and organising committees, authors, participants and conference supporters nationally and internationally.
Keywords: Criminal justice, criminology, UN SDGs, local, security, local, urban, rural
Published in DKUM: 01.09.2023; Views: 123; Downloads: 28
Full text (9,05 MB)
This document has many files! More... |
4. Layered battleship game changer password systemBoštjan Brumen, Darko Crepulja, Leon Bošnjak, 2022, original scientific article Abstract: The paper presents a secure and usable variant of the Game Changer Password System, first proposed by McLennan, Manning, and Tuft. Unlike the initial proposal based on inadequately secure Monopoly and Chess, we propose an improved version based on a layered “Battleship” game resilient against brute force and dictionary attacks. Since the initially proposed scheme did not check for the memorability and usability of a layered version, we conducted an experiment on the usability and memorability aspects. Surprisingly, layered passwords are just as memorable as single ones and, with an 80% recall rate, comparable to other graphical password systems. The claim that memorability is the most vital aspect of game-based password systems cannot be disproved. However, the experiment revealed that the usability decreased to such a low level that users felt less inclined to use such a system daily or recommend it to others.
Our study has once again shown that optimizing the password security–memorability–usability triangle is hard to achieve without compromising one of its cornerstones. However, the layered Game Changer Password System can be used in specific applications where usability is of secondary importance, while security and memorability augmented by its graphical interface are at the forefront.
Keywords: security, authentication, passwords, graphical passwords, cryptanalysis, games, memory, memorability, usability
Published in DKUM: 22.08.2023; Views: 125; Downloads: 10
Full text (820,86 KB)
This document has many files! More... |
5. Cyber Security- Training Students and Scholars for the Challenges of Information and Communication Technologies in Research and Studies for Internationalisation : handbook2023 Abstract: This handbook is a product of the Erasmus+ Strategic Partnership between the partners Université Polytéchnique Hauts-de-France, Politechnika Poznanska, Brandenburgische Technische Universität Cottbus-Senftenberg and the coordinator University of Maribor. Contentuous contribution were made by staff of University of Maribor and Politechnika Poznanska, evaluations by staff of the other two partners. The handbooks handles virtual learning environments in the international education and research area and exposure of the systems to cybercrime. Besides introductory contributions on legal aspects of challenges in the fields of human rights, European regulations of data security, civil law and criminal law aspects of caber security of virtual learning environments and methodologies of their introduction w8ithin organisations, the handbook also gives useful instructions for elaboration of virtual courses within virtual learning environments relevant for the internationalised research and education not only since the Covid-19 pandemic. The handbook is dedicated to use on the internet within the Moodle system.
Keywords: cyber security, virtual learning environment, data security, cyber crime, systems
Published in DKUM: 13.04.2023; Views: 238; Downloads: 28
Full text (5,72 MB)
This document has many files! More... |
6. Language for specific purposes in the framework of criminal justice and security2022 Abstract: The scientific monograph is oriented towards LSP for the field of criminal justice and security studies and also focuses on subfields, namely police, law, security, administration, etc. The monograph contains contributions from the field of criminal justice and security studies prepared by Slovenian and foreign authors, namely Jelena Gugić from the University of Pula, Mojca Kompara Lukančič from the University of Maribor, Nives Lenassi from the University of Ljubljana, Dragoslava Mićović from the University of Belgrade, Eva Podovšovnik from the University of Primorska, Jasna Potočnik Topler from the University of Maribor, Vanja Slavuj from the University of Rijeka, and Tilen Smajla from the University of Maribor. The work offers an insight into English and Italian through the prism of contents that focus on the language for specific purpose for the field of criminal justice and security.
Keywords: the English language, the Italian language, criminal justice and security, terminology, LSP
Published in DKUM: 09.12.2022; Views: 416; Downloads: 45
Full text (10,95 MB)
This document has many files! More... |
7. Analysis of legal powers of municipal wardens they possess to ensure safety at the local levelBojan Tičar, 2021, review article Abstract: Purpose: This article is primarily intended for students and other professionals at the Faculty of Criminal Justice and Security of the University of Maribor to familiarise themselves with the Slovenian regulation in the field of criminal justice and security. The article presents safety powers of municipal wardens from the perspective of the applicable Slovenian law. Readers may learn how the Slovenian legal system works at the local level, what general legal acts provide a basis for municipal wardens’ actions and what are legal rules for their application. Methods: The article is a scientific review based on grammatical and dogmatic interpretation of applicable legal regulations and selected decisions of the Constitutional Court of the Republic of Slovenia, and on an analytical method (de lege lata) of the review of the Slovenian legislation in the field in question. The legal methods used by the author also include a synthetic method of comparing the legislation from the underlying Municipal Warden Services Act (»Zakon o občinskem redarstvu« [ZORed], 2006) and its main amendments set out in the Act Amending the Municipal Warden Services Act (»Zakon o spremembah in dopolnitvah Zakona o občinskem redarstvu« [ZORed-A], 2017). Findings: The paper is a comprehensive review of measures that municipal wardens may use to ensure safety at the local level. The author lists the relevant scientific and professional literature and argues about polemic issues with other prominent Slovenian authors dealing with the field in question, i.e., legal powers of municipal wardens. He mainly refers to the works of authors, such as Meško, Žaberl, Dvojmoč, Lavtar, Kečanović, Gostič, Brezovnik, Grafenauer, and Flander. Limitations/Implications: Due to the limited length of the article the overview of the municipal wardens’ powers covers essential legal concepts. The author’s intention is to introduce to the Slovenian or foreign readers the complex notions from the Slovenian legal system, sometimes in a non-technical way since the readers will be both from the field of law and from the field of criminal justice and security. Practical Implications: The article has practical application for domestic and foreign experts wishing to gain knowledge of the Slovenian regulation relating to safety at the local level. Definitions are correct and up-to-date and contribute, therefore, to boosting the knowledge in this field. The article contains a further overview of terms to broaden the understanding of the legal categorical apparatus in local safety and security. Originality/Value: This is a review article and therefore its originality is limited since the author does not provide any new scientific information. Rather, he summarises, through a scientific legal analysis, what is already known. The original value of the article lies in the way the author puts the legal and repressive measures of municipal wardens in a readable and easy-to-understand context so that readers can remember them easily. The definitions of terms used in the article are useful and will be helpful to many readers in their future study or research.
Keywords: local safety and security, municipal and inter-municipal warden services, measures and powers of municipal wardens, right to security, Slovenian administrative law
Published in DKUM: 26.01.2022; Views: 720; Downloads: 32
 Link to file
This document has many files! More... |
8. Criminal justice and security in Central and Eastern Europe : Perspectives of Rural Safety, Security and Rural Criminology, Book of Abstractc2021, other monographs and other completed works Abstract: Conference proceedings consist of abstracts of conference papers presented at the 13th international biennial conference on Criminal Justice and Security in Central and Eastern Europe organised by the Faculty of Criminal Justice ans Security of the University of Maribor, Slovenia. The conference was held online between 13 and 15 September 2021. A lead topic of the conference is rural criminology and perspectives such as deviance, crime and social control activities, and provision of safety ans security. At the conference, 68 papers were presented by 116 authors from 22 countries. A celebration of the 25th anniversary of the international biennial conference took place. The conference proves an active and fruitfull international research activities of the Faculty of Criminal Justice and Security of the University of Maribor.
Keywords: criminal justice, criminal justice and security studies, criminology, conference, Central and Eastern Europe. rural criminology
Published in DKUM: 13.08.2021; Views: 792; Downloads: 165
Full text (6,61 MB)
This document has many files! More... |
9. Immunity of Heads of State and High-Ranking State Officials for International Crimes : magistrsko deloAdmir Muratović, 2021, master's thesis Abstract: The present thesis is devoted to the immunity of Heads of State and high-ranking State officials, generally meaning the Heads of Government, and the Foreign Ministers, before the national and international courts, for international crimes as codified in the Rome Statute of the International Criminal Court (ICC), namely the crime of genocide, crimes against humanity, war crimes and the crime of aggression, with partial touch upon the crime of torture as well.
The introductory part lays out the prosecution of State officials throughout the history all the way to the World War II, the Nuremberg and Tokyo Trials, and the developments in the decades post-World War II, with the eventual establishment of the ICC. Afterwards, the definitions and list of international crimes are discussed.
Following the arguments for the rationale behind immunity and the correlation between immunity and jurisdiction, I elaborate on the various types of immunity, such as State immunity – and its subcategories personal and functional immunities – and diplomatic immunity. Thereby, I discuss at length the range of seemingly outstanding questions relating to, e.g., the scope of State officials entitled to immunity ratione personae, whether the commission of international crimes constitute officials acts, whether the immunity of State precludes a lawsuit towards State for breaches of jus cogens norms by acts that qualify as acta jure imperii, whether the diplomatic immunity pertains to high-ranking State officials other than ambassadors and diplomatic agents, etc. The explanations of other, less debatable questions, such as the distinction between personal and functional immunities for international crimes before national courts, is also provided.
In the following part, I analyse the immunity of the incumbent high-ranking State officials before international courts, with a particular focus set on the ICC and Article 27 of the Rome Statute. Emphasizing provisions concerning international cooperation and judicial assistance to the ICC, I bring up Article 98 of the Rome Statute as a counterweight to the rejection of immunity before the ICC, and consider the interplay between both, Articles 27 and 98. Another point of divergence here is the question of which States fall under the scope of the term ‘third State’ in Article 98 of the Rome Statute. Furthermore, the analysis of the Al-Bashir case is provided through the application of the United Nations (UN) Security Council Resolution 1593 (2005), as well as Articles 25 and 103 of the UN Charter. Additionally, I intend to provide a method of resolving some of the ambiguities stemming out of the seemingly contradicting Rome Statute provisions by applying the rules of treaty interpretation, in particular its subsidiary means, discerning the object and purpose of the Rome Statute through the lenses of its Preamble.
In the final part, I have sought out various other concepts that could supersede the immunity of high-ranking State officials for international crimes, including the jus cogens international crime exception to immunity, the obligation aut dedere aut judicare, and the universal jurisdiction.
Keywords: State immunity, immunity ratione personae, immunity ratione materiae, Heads of State, high-ranking State officials, international crimes, international courts, International Criminal Court (ICC), Rome Statute, Al-Bashir case, UN Security Council
Published in DKUM: 23.07.2021; Views: 1010; Downloads: 108
Full text (998,44 KB) |
10. Systemic direction and supervision of police work in the Republic of Slovenia : current situation analysisMaja Modic, 2020, original scientific article Abstract: Purpose: The purpose of this paper is to present the findings of the target research project "Effectiveness of Systemic Supervision of the Police in Regard to Human Rights as well as the Statutory and Professional Standards of Police Work (V5-1942)". We focused on the implementation of systemic supervision of police work, more precisely, on the operations of the Division for System Guidelines and Supervision of the Police, which operates within the Police and Security Directorate. Design/Methods/Approach: We examined how systemic supervisory activity of the work of the police is regulated by Slovenian law, limiting ourselves to the work of the Division for System Guidelines and Supervision of the Police. Based on the findings and an additional review of anonymised supervision reports, we prepared a questionnaire and conducted a structured written interview as well as oral interviews with the Division's employees. Findings: Systemic supervision efforts are contributing significantly to the quality of policing, but challenges and opportunities for improvement still remain. One of the main challenges is keeping police officers informed about supervision reports and effectively implementing inspection findings. Research Limitations/Implication: In the part of the study described, we focus exclusively on the work of the Division for System Guidelines and Supervision of the Police and take a look at systemic supervision activities solely from the Division's point of view. For a more complete overview of the matter, our findings should be compared with the perspective of those being supervised, i.e. the police officers who have undergone supervision. Originality/Value: The main added value of the paper is that it examines how supervisors perceive their own work and the organisation, operation and effectiveness of systemic supervisions of police work.
Keywords: systemic supervision of police work, Division for System Guidelines and Supervision of the Police, Police and Security Directorate, Slovenia
Published in DKUM: 11.06.2021; Views: 843; Downloads: 20
Link to full text |
