1. Data breaches in healthcare: security mechanisms for attack mitigationLili Nemec Zlatolas, Tatjana Welzer Družovec, Lenka Lhotska, 2024, original scientific article Abstract: The digitalisation of healthcare has increased the risk of cyberattacks in this sector, targeting sensitive personal information. In this paper, we conduct a systematic review of existing solutions for data breach mitigation in healthcare, analysing 99 research papers. There is a growing trend in research emphasising the security of electronic health records, data storage, access control, and personal health records. The analysis identified the adoption of advanced technologies, including Blockchain and Artificial Intelligence, alongside encryption in developing resilient solutions. These technologies lay the foundations for addressing the prevailing cybersecurity threats, with a particular focus on hacking or malicious attacks, followed by unauthorised access. The research highlights the development of strategies to mitigate data breaches and stresses the importance of technological progress in strengthening data security. The paper outlines future directions, highlighting the need for continuous technological progress and identifying the gaps in the attack mitigations. Keywords: data security, privacy, sensitive personal information, electronic health records, cybersecurity Published in DKUM: 23.08.2024; Views: 109; Downloads: 8
Full text (1,51 MB) |
2. Privacy and data protection concerns in the regulatory framework of Slovenian energy lawZoran Dimović, 2023, original scientific article Abstract: The implementation of smart energy systems (SES) in the Slovenian energy sector has raised significant privacy and data protection concerns. The collection and processing of personal data from energy consumers, as well as cybersecurity threats, pose risks that must be addressed. The legal framework governing privacy and data protection in the energy field in Slovenia is based on the GDPR, ZOEE, ZVPot-1, ZVOP-2 and others, which impose significant obligations on entities processing personal data. To mitigate these risks, exact terminology must be used to implement privacy, data protection and also cybersecurity measures and ensure compliance with the legal framework. Keywords: cybersecurity, data protection, energy law, green and digital transformation, privacy protection Published in DKUM: 20.02.2024; Views: 341; Downloads: 32
Full text (456,29 KB) This document has many files! More... |
3. Identifying key activities, artifacts and roles in agile engineering of secure software with hierarchical clusteringAnže Mihelič, Tomaž Hovelja, Simon Vrhovec, 2023, original scientific article Abstract: Different activities, artifacts, and roles can be found in the literature on the agile engineering of secure software (AESS). The purpose of this paper is to consolidate them and thus identify key activities, artifacts, and roles that can be employed in AESS. To gain initial sets of activities, artifacts, and roles, the literature was first extensively reviewed. Activities, artifacts, and roles were then cross-evaluated with similarity matrices. Finally, similarity matrices were converted into distance matrices, enabling the use of Ward’s hierarchical clustering method for consolidating activities, artifacts, and roles into clusters. Clusters of activities, artifacts, and roles were then named as key activities, artifacts, and roles. We identified seven key activities (i.e., security auditing, security analysis and testing, security training, security prioritization and monitoring, risk management, security planning and threat modeling; and security requirements engineering), five key artifacts (i.e., security requirement artifacts, security repositories, security reports, security tags, and security policies), and four key roles (i.e., security guru, security developer, penetration tester, and security team) in AESS. The identified key activities, artifacts, and roles can be used by software development teams to improve their software engineering processes in terms of software security. Keywords: secure software development, security engineering, agile methods, agile development, software development, software engineering, software security, application security, cybersecurity, cyber resilience Published in DKUM: 29.11.2023; Views: 417; Downloads: 10
Full text (557,17 KB) This document has many files! More... |
4. Advances in cybersecurity 20172017, scientific monograph Abstract: Understanding the cyberspace and awareness of its effects impacts the lives of all individuals. Thus, the knowledge of cybersecurity in both organizations and private operations is essential. Research on various aspects of cybersecurity is crucial for achieving adequate levels of cybersecurity. The content of this scientific monograph provides answers to various topical questions from the organizational, individual, sociological, technical and legal aspects of security in the cyberspace. The papers in the monograph combine the findings of researchers from different subareas of cybersecurity, show the effects of adequate levels of cybersecurity on the operations of organizations and individuals, and present the latest methods to defend against threats in the cyberspace from technical, organizational and security aspects. Keywords: cybersecurity, cyber resilience, mobile security, digital privacy, IoT security Published in DKUM: 08.12.2017; Views: 1933; Downloads: 361
Full text (3,56 MB) This document has many files! More... |