THE IMPORTANCE OF THE NATIONAL CERT INSTITUTION FOR THE REPUBLIC OF SERBIA

Milica Lesanovic

doi:10.5937/ptp2502174L

Authors

Milica Lesanovic University Business Academy in Novi Sad, Faculty of Law for Commerce and Judiciary in Novi Sad, Novi Sad, Serbia https://orcid.org/0009-0004-1954-1584

DOI:

https://doi.org/10.5937/ptp2502174L

Keywords:

National CERT, information security, Law on information security, cyber threats, Republic of Serbia

Abstract

The National CERT is the institution responsible for coordinating, preventing, and protecting against current security risks in the information and communication systems of operators at the national level. This article explores the mechanisms of protection, prevention, and response to security threats, emphasizing the role and importance of the CERT institution for the Republic of Serbia, the application of the Law on Information Security, and the raising of public awareness about information security. Various research methods have been applied, including the method of concretization, the combined method of analysis and synthesis, the inductive-deductive method, the comparative method, and the statistical method. The Law on Information Security regulates protective measures against security risks in information and communication systems, defines the responsibilities of legal entities in managing and using such systems, and determines the competent authorities for implementing those measures. Through supervision, control, and recordkeeping of all security threats in the Republic of Serbia, the National CERT enables proactive engagement by competent institutions, thereby enhancing the level of national security and Serbia’s position on the global stage.

References

Aničić G. (2024). Pregled najvećih Cyber napada u Srbiji: Bezbednost na testu poslednjih 5 godina [Overview of the biggest cyber attacks in Serbia: Security on the test for the last 5 years]. FTN Informatika. Downloaded 2025, February 1, from https://ftninformatika.com/pregled-najvecihcyber-napada-u-srbiji-bezbednost-na-testu-poslednjih-5-godina/

CryptoAdria Portal (2025). „Najveći kripto hakerski napad u istoriji“: Bybit eksploatacija je najnoviji sigurnosni udarac za industriju [“Biggest crypto hack in history”: Bybit exploit is the latest security blow to the industry]. CryptoAdria Portal. Downloaded 2025, February 1, from https://cryptoadria.com/portal/2025/02/24/najveci-kripto-hakerski-napadu-istoriji-bybit-eksploatacija-je-najnoviji-sigurnosni-udarac-za-industriju/

Đurić, J. (2021). U Srbiji najčešći sajber napadi „pecanjem“, hakeri traže žrtve putem aplikacija i linkova [In Serbia, the most common cyber attacks are “phishing”, hackers look for victims through applications and links]. Euronews Serbia. Downloaded 2025, February 1, from https://www.euronews.rs/magazin/tehnologija/4211/u-srbiji-najcescisajber-napadi-pecanjem-hakeri-traze-zrtve-putem-aplikacija-i-linkova/vest

Grobler, M., & Bryk, H. (2010). Common challenges faced during the establishment of a CSIRT. 2010 Information Security for South Africa, pp. 1–6. https://doi.org/10.1109/ISSA.2010.5588307

Kamara, I., van den Boom, J., Stuurman, K., van Brakel, R., Leenes, R., Auwema, N., Duijnhoven, H., Kassim, S. R. B. M., Shamsuddin, S. B., Li, S., & Arief, B. (2022). How national CSIRTs operate: Personal observations and opinions from MyCERT. In 2022 IEEE Conference on Dependable and Secure Computing (DSC) (pp. 1–2). IEEE. https://doi.org/10.1109/DSC54232.2022.9888803

Kim, R. (2022). Public-private partnerships in national cybersecurity. Michigan Technology Law Review. Downloaded 2025, February 1, from https://mttlr.org/2022/01/public-private-partnerships-in-nationalcybersecurity/

Krivični zakonik [Criminal Code]. Službeni glasnik RS, br. 85/05, 88/05 – ispr., 107/05 – ispr., 72/09, 111/09, 121/12, 104/13, 108/14, 94/16, 35/19 i 94/24

Ministry of Innovation and Technological Development, & SHARE Foundation. (2023). Komentari SHARE Fondacije na Nacrt zakona o informacionoj bezbednosti i Obrazloženje Zakona o informacionoj bezbednosti. [SHARE Foundation›s Comments on the Draft Law on Information Security and the Explanatory Memorandum to the Law on Information Security]. Downloaded 2025, February 1, from https://mit.gov.rs/extfile/sr/6891/Obrazlozenje%20ZIB.pdf

Nacionalni CERT Republike Srbije. (2025). [National CERT of Republic of Serbia]. O Nacionalnom CERT-u. [About National CERT]. Downloaded 2025, February 1, from https://www.cert.rs/rs/stranica/57-O+Nacionalnom+CERT-u.html

Nacionalni CERT Republike Srbije. (2020). [National CERT of Republic of Serbia]. Izveštaj o statističkim podacima za 2020. godinu. [Report on statistical data in 2020], pp. 25–27. Downloaded 2025, February 1, from https://www.cert.rs/files/shares/Izve%C5%A1taj%20o%20statisti%C4%8Dkim%20podacima%20za%202020.%20godine.pdf

Nacionalni CERT Republike Srbije. (2021). [National CERT of Republic of Serbia]. Izveštaj o statističkim podacima za 2021. godinu. [Report on statistical data in 2021], pp. 43–46. Downloaded 2025, February 1, from https://www.cert.rs/files/shares/Izvestaj%20o%20 statisti%C4%8Dkim%20podacima%20za%202021%20godinu.pdf

Nacionalni CERT Republike Srbije. (2022). [National CERT of Republic of Serbia]. Izveštaj o statističkim podacima za 2022. godinu. [Report on statistical data in 2022], pp. 40–43. Downloaded 2025, February 1, from https://www.cert.rs/files/shares/Izvestaj%20o%20 statisti%C4%8Dkim%20podacima%20 za%202022.%20godinu.pdf

Nacionalni CERT Republike Srbije. (2023). [National CERT of Republic of Serbia]. Izveštaj o statističkim podacima za 2023. godinu. [Report on statistical data in 2023], pp. 43–46. Downloaded 2025, February 1, fromhttp://skr.rs/z0DM

Zakon o informacionoj bezbednosti [Information security law], Službeni glasnik RS, br. 6/16, 94/17 i 77/19

Rizmal, I., Radunović, V., & Krivokapić, Đ. (n.d.).Vodič kroz informacionu bezbednost u Republici Srbiji [A guide to information security in the Republic of Serbia]. Centar za evroatlantske studije – CEAS i Misija OEBS-a u Srbiji. Downloaded 2025, February 1, from https://www.osce.org/files/f/documents/b/b/272206.pdf

SearchInform. (2022). Cyber threats to national security. SearchInform Blog. Downloaded 2025, February 1, from https://searchinform.com/blog/2022/11/18/cyber-threats-to-national-security/

Tanczer, L. M., Brass, I., & Carr, M. (2018). CSIRTs and global cybersecurity: How technical experts support science diplomacy. Global Policy, 9(1), pp. 60–66. https://doi.org/10.1111/1758-5899.12625

Vlaović, G. (2024). Hakerski napad na EPS: Šta se zna o grupi „Qilin” koja ga je izvela, ali i o starijim protokolima u preduzeću? [Hacking attack on EPS: What is known about the “Qilin” group that carried it out, but also about the older protocols in the enterprise?]. Danas. Downloaded 2025, February 1, from https://www.danas.rs/vesti/ekonomija/hakerski-napad-eps-qilin/