3g ForensicsA CSV format file is available to ease import into third party applications.
SIMIS reports do not require a proprietary viewer, reports can be viewed in any standards compliant browser. Firefox (mozilla 1999 and onwards), IE (5.5 and onwards), Opera(4,5,6&7). SIMIS provides a detailed report in easily viewable HTML format and user-definable printed format for every SIM interrogated. Unicode support for SMS & phone-book files with alphanumeric elements allows foreign characters and scripts from any international language to be decoded and displayed.
Report Contents
View HTML ReportWhen viewed in a browser, the SIMIS report comprises of three parts, Header, Menu and Data.
If printed the report comprises of the Header and Data, presented in a clear text only format making use of colour and fonts to ensure that the report remains easily readable.
Report Personalisation
Though the integrity of data is of paramount importance, the format of reports and presentation of the data is flexible. The content of SIMIS reports can be customised by the operator, by selecting which data is or is not extracted from the card. The examiner can further personalise the report by the addition of an organisation logo in the header and changes to the colour scheme and fonts used in the viewable report. Similarly the printable report is fully customisable to enhance readability or to highlight specific information.
When modifying a report the content of the data file is NEVER edited or modified by the examiner. The examiner changes the report presentation by modification of viewing and printing style sheets that affect, only, the way the data is displayed.
SIMIS3G offers a raw text output file in .CSV (Comma Separated Value) format so that examiners may easily import the SIMIS3G output into virtually any application from MS Word or ACCESS through to third party forensic tools.
Report Integrity
Integral to SIMIS3G is a cryptographic hash funtion that generates two additional files for each data file produced. These files are the MD5 and SHA (256) hash files related to the data file. These hash files allow the examiner to easily verify the integrity of the distributed data.
* See report distribution
SIMIS3G has an inbuilt hash checking feature, for quick verification, but any third party hash calculator can be used to test the data file against the original has to detect any tampering with the data file.
Report Construction
SIMIS3G reports consist of data files, security files and styling files.
The most commonly used file is the HTML report, this report comprises of:
- .html file - this is the SIMIS output file relating the the extracted data.
- .html.MD5 - MD5 hash of the .html file
- .html.SHA - SHA(256) hash of the .html file
- simis.css - style file for web browser viewing of .html file
- simis-print.css - style file for the printable SIMIS report
- logo.gif - logo for the header of the report
- toplink.gif - link to external HTML file if required
- .dmp file - this is the CSV report
- .dmp.MD5 - MD5 has of the DMP file
- .dmp.SHA - SHA(256) hash of the DMP file
Report Distribution
Sending a USIM report to a third party is easy. Simply add the files to a zip archive and send them to the third party. Typically the HTML report would be sent, in which case the following files ares end to the third party:- .html file - this is the SIMIS output file relating the the extracted data.
- simis.css - style file for web browser viewing of .html file
- simis-print.css - style file for the printable SIMIS report
- logo.gif - logo for the header of the report
- toplink.gif - link to external HTML file if required
The MD5 files and SHA files may be retained or sent, in either case the original examiner should keep a copy of the hash file safe so that if required the files that a third party presents in future can be verified as containing the original content, no more, no less.
Site Navigation