Krešimir Fertalj

A critique of Web application generators

We describe the use of code generators in Web development process. An overview of key features of Web applications and Web application development is given. The research focused on how those features are implemented and supported by different Web application generators and other Web development tools. The quality and maintainability of generated code is discussed and the difference between the optimal and the generated code is emphasized.

Denial of service attacks: An overview

Denial of service (DoS) attacks present one of the most significant threats to assurance of dependable and secure information systems. Rapid development of new and increasingly sophisticated attacks requires resourcefulness in designing and implementing reliable defences. This paper presents an overview of current DoS attack and defence concepts, from a theoretical and practical point of view. Considering the elaborated DoS mechanisms, main directions are proposed for future research required in defending against the evolving threat..

Proactive monitoring of the information system risk and quality

Proactive system monitoring is the search for potential problems in the Information Systems (IS) before they occur. With reference to IS, monitoring is always proactive. Watching for evidence of emerging or potential problems and identifying their source (factor), checking available disk space, the health of essential processes, probing systems to ensure that they are reachable, business requirement fulfilment; these are all examples of detecting problems before they disrupt the work/flow of an IS. Monitoring is not something that should be cavalierly put off until theres nothing else on the development teams schedule to be done. As soon as the IS is put in production, it is time to start to protect it against all possible types of problems.

A prototype for the short-term prediction of moving object's movement using Markov chains

Due to the recent advances in Global Positioning System (GPS) and wireless technology, which enabled collection of large amount of data about moving objects, research on moving objects experiences its expanded phase. In this paper we focus on short-term prediction of moving objects movement using Markov chain adapted to spatiotemporal data. We demonstrate our prototype for tracking and predicting objects future location and perceive some problems in real-time prediction.

Methodological Framework for Virtual Team Project Management

Virtual teams greatly depend on various information and communication technologies that support different aspects of teams’ operation. Therefore, managing projects involving virtual teams requires specific tool and technology supported approach. Currently a number of project management methodologies exist, but none of them is entirely suitable for managing projects in virtual team environments. In this paper, a methodological framework suitable for management of projects involving virtual teams is proposed. Project life cycle adequate for virtual project teams is elaborated and effectiveness of the proposed framework is verified on a real-world project.

A review of enterprise IT integration methods

The development of enterprise IT architectures has become a real challenge in the recent years. Most of the issues stem from heterogeneous applications, platforms and environments that need to operate as a homogeneous unit. It is for this reason that the enterprise IT systems of today are increasingly driven to integrate all of their current and future components. The additional motivation for integration is also a need for narrowing the gap between the IT and the business world of todays enterprises, in order to increase competitiveness. This article provides an introduction to enterprise IT systems integration and gives a summary of methodologies most in use today.

Analysis of e-learning repository systems and frameworks with prepositions for improvements

Systems manipulating large number of courses and students are called learning management systems (LMS). LMS have excellent performances implemented through advanced Web technologies but often poor or rarely used repository for storing institutions educational data. There still remains a problem of how to allow users of LMS to easily modify and integrate content form federated e-learning repositories into their courses. In this article we present analysis of present repository frameworks and projects. Also, we present possibilities of using FEDORA (Flexible Extensible Digital Repository Object Architecture) framework as a repository solution. A pilot application has been created for demonstration of interaction between LMS and repository.

Importance of semantics in MLS database models

What is important when choosing the multilevel security model? Is it merely the way that model implements integrity rules (i.e. entity integrity property, referential integrity property) or should the models semantics of what user on some specific level can see and/or believe be considered as well? In this paper, the basic concepts of multilevel security (MLS) database models are described and issues regarding the MLS semantics are considered. A comparison of well-known multilevel security models (LDV, Jajodia-Sandhu (1991), MLR, Smith-Winslett (1992) and Belief-Consistent Model) is given. The main problems, caused by the lack of semantics or incomplete semantic definitions, are discussed.

Denial of service attacks, defences and research challenges

This paper presents a review of current denial of service (DoS) attack and defence concepts, from a theoretical ad practical point of view. Seriousness of DoS attacks is tangible and they present one of the most significant threats to assurance of dependable and secure information systems, which is growing in importance. Rapid development of new and increasingly sophisticated attacks requires resourcefulness in designing and implementing reliable defences. We focus on providing a both fresh and relevant state of art reference with included different perspectives, such as economic DoS (EDoS) or offensive countermeasures in the cyber space. Considering the elaborated DoS mechanisms and state of art review, our considerations of main challenges are discussed. Directions are proposed for future research, considered required in defending against the DoS threat, which is evolving into a potentially major disruptive factor for global security models on all levels.

INTRODUCTION OF SAP ERP SYSTEM INTO A HETEROGENEOUS ACADEMIC COMMUNITY

Introduction of a complex ERP system like SAP into a heterogeneous academic environment like the University of Zagreb is far from being a trivial task. The University comprises more than 30 constituents, called faculties or academies, geographically dispersed, with long and specific traditions. Financing according to the lump sum principle, enforced in Croatia as a side effect of the in Europe obligatory and omnipresent Bologna process, requires a unified view on the educational institutions in order to provide a more just and appropriate financing scheme than the current one. After the experience with own development to support educational tasks and student administration, for standard financial and administration tasks SAP has been chosen as the most appropriate platform. The developer was selected after public bidding and the authors’ institution was chosen for the pilot project. The authors were playing principal roles in the process of successful deployment and still expect to offer their expertise for implementation in the rest of the University. However, serious risks stemming from lack of motivation by some constituents are present.