News and information about verinice.

We just publish the newest version of verinice 1.4.0 in our download area:

New in verinice 1.4.0:

• Improved quickness of the application at different steads, e.g.
  for copy and paste, import and save of elements.
• verinice-1.4.0 is now available as an beta version for Mac OS X.
• New output format for reports: OpenDocument-Text and OpenDocument-Spreadsheet supported by OpenOffice and LibreOffice
• A range of new and improved reports
• External Links for ISO 27001 elements

From now on verinice 1.3.2 with the codename Ericeira is available. The download of new versions is via the verinice.SHOP.

New in this release

• Report output formats Word and Excel
• File attachments of all items are exported and imported
• verinice.PRO: E-mail addresses of users are imported from the Active Directory
• verinice.PRO: Even with simultaneous access by many users, a new login is no longer required (bugfix)
• verinice.PRO: Access of unprivileged users to Oracle databases is possible again (bugfix)

Please also note the Release Notes.

Codename: Hossegor

From now on, verinice-1.3.1 can be downloaded from the download area.

New in this release

• Improvement of inheritance of Business Impact values for Confidentiality, Integrity and Availability (bug fix)
• The import of controls from catalogues into the Information Security Model via drag and drop is possible again (bugfix)
• The risk analysis according to ISO 27005 has been improved (bugfix)
• Improvement of the colour marking in the report Risk Assessment: Assets (Bugfix)
• In the editor settings, all input fields are selected when the programme is started for the first time.
  Important: The settings must be activated once. Select in the menu: Edit->Onssettings... and in the dialogue: Editor settings -> Apply

On the Website of the VDA (Verband der Automobilindustrie) verinice is described as a tool for simplified answering of the so-called "Information Security Assessment" (VDA ISA). The ISA is a questionnaire on information security with an integrated process maturity model, which was integrated into verinice in cooperation with the corresponding working group of the VDA.

In a contribution to the IT Conference 2010 of the DIIR, Senior Expert Sascha Brock describes how the quality and security of web applications at Deutsche Post DHL is ensured by internal revision through process-oriented auditing over the entire life cycle. In doing so, he also discusses verinice as a suitable tool for supporting the audit approach described.

The new version 1.2.3 of verinice is now available in the download area.

The added features and improvements are:

• Possibility of user account import out of the Active Directory

• Usage of user account management in every perspective 

• Results of the "Information Security Assessments" can be shown in the tree structure 

• Bug-fixes

You will find SerNet with verinice.PRO at the Cebit in exhibition hall 2 at stand F39.

Get in touch with the newest features of verinice.PRO and the possibilities SerNet offers you at the wide field of information security.

And if you not have a ticket yet, you can get one for free. Just send an e-mail to cebit@remove-this.sernet.de!

From now on, the update to verinice version 1.2.2 can be downloaded in the download area.

The changes include:

• improved dialogue for changing user permissions (verinice.PRO)
• several IT associations / scopes can be exported at the same time
• additional form fields can be shown for different topics, e.g. IT-Grundschutz Audit, Risk, Costs...
• The following reports are now directly available in the client:
  • Structural analysis
  • Application / IT system dependencies
  • Protection needs mapping
  • Modelling according to IT-Grundschutz
  • Basic security check
  • Realisation plan
  • Risk analysis according to BSI 100-3
  • IT baseline protection audit report

For a complete list of fixed bugs, please refer to the release notes.