As of now the manual for the free open source tool verinice. is available at the verinice Online Shop. verinice helps you to handle the management of information security.
Over 150 pages explain the operation of the Client for Windows, Mac and Linux, describe the web frontend and give many instruction for the operation of the verinice.PRO server.
Separate chapters deal with the topics "Methods for Risk Management",
working withe the different perspectives, "Privacy", "Basic protection", "ISM / ISO" and "VDA" especially for the users in the Automotive sector.
The manual is only available as subscription and is distributed as PDF. For 49.98 Euros, customers get a one-year-access to the documentation maintained by SerNet. The manual is free for users of verinice.PRO.
We do not sell paper that is already outdated at the time of delivery. Rather, customers have the opportunity to download the current PDF up to the last day of their subscription.
With the manual SerNet tries to transfer the successful open source distribution model of the update subscriptions to the documentation as well.
Visit http://shop.v.de to shop the offer.
Yesterday, the BSI released the metadata update for the 12th supplemental set of the IT-Baseline Catalogs (German only). As of now, this update is available for verinice users.
For users of the free version of verinice the catalog can be found on our download server: it-grundschutz_el12_html_de.zip.
After downloading, the file has to be selected in the settings of verinice:
Menu -> Einstellungen -> BSI IT-Grundschutz -> ZIP-Datei mit GS-Katalogen
Please note: Unlike before, the version that is available on the BSI website for download cannnot be used in verinice directly. Please use the above mentioned file only.
For users of verinice.PRO a new RPM package is ready in the repository. It can be installed using the normal update command. After updating the RPM package verinice.PRO the configuration of the server has to be changed in order for the new file to be processed. In the file:
change the property
Please note the list of changes of the 12th supplemental set compared to the previous version. In particular, changes in individual actions, that have to be considered as part of your basic security check. Changes such as discontinued measures are represented by verinice after the import. Changes in the content of individual measures must be reviewed by the security officer and possibly be re-evaluated.
When transferring the existing results to revised modules the verinice consolidation feature can be of help.
The complete description of all changes can be found in the PDF document provided by the BSI, see chapter "New": IT-Grundschutz-Kataloge-12-EL.pdf
Here is a short list of the main new features:
Note for verinice.PRO installations: In order to include the new Grundschutzkatalog immediately, the cache of the application server needs to be emptied. Proceed as followed.
1. Stop the Tomcat-Server.
2. Delete all files in the folder /var/cache/tomcat/temp/ .
3. Deploy the changes in the file "veriniceserver-plain.properties". It is located in the directory /usr/share/tomcat6/webapps/veriniceserver/WEB-INF/ and contains the properties and preferences of the Baseline Catalogs to be used.
4. Restart the Tomcat-Server.
The new version 1.5.3 of verinice is available in our download area.
The VDesigner 1.5.2 is available for all users of verinice.PRO. As a standalone software package, it provides advanced users with the ability to customize the verinice report templates and enables them to create own report templates.
The VDesigner allows:
The VDesigner is based on the open source BIRT framework. Users who already have experience using the BIRT report designer will find their way in VDesigner quickly.
The Designer is downloadable from the repository in the verinice.PRO VDesigner folder. There you can also find a quick guide with some examples as well as the templates of the reports contained in verinice.
We just publish the newest version of verinice 1.4.0 in our download area:
The new version 1.2.3 of verinice ist now available in the download area.
The added features and improvements are:
You will find SerNet with verinice.PRO at the Cebit in exhibition hall 2 at stand F39.
Get in touch with the newest features of verinice.PRO and the possibilities SerNet offers you at the wide field of information security.
And if you not have a ticket yet, you can get one for free. Just send an e-mail to cebit@! sernet.de
A new version of verinice is available in the download area.
Download the latest version 1.2.0 of verinice. This new version allows you to implement and audit an ISMS based on ISO 27001 and other standards, conduct information security assessments based on an easy to use questionaire (VDA ISA standard), perform risk asessments based on ISO 27005, conduct audits, document compliance with any given standard, manage your documents and records and much more.
Furthermore, verinice is now available in English (Hello World!). Get the latest version of verinice for free in the download area now.