===========================================
 Sec6Net Identity Management System (SIMS)
===========================================

Sec6Net Identity Management System is a collection of tools originally developed as a part of the
project Modern Tools for Detection and Mitigation of Cyber Criminality on the New Generation
Internet (http://www.fit.vutbr.cz/~matousp/grants.php.en?id=517) at Brno University of Technology.

SIMS is able to learn network identities from various network protocols and link them together. SIMS
was originaly developed as a part of Sec6Net Lawful Interception System.

SIMS was developed and tested in Linux and Python 2/3/C/C++. It has the following dependencies:

bash
C/C++ compiler, make (to compile some modules)
python >=2.6, <3.0
python >=3.0 (both versions required)
python-dev >= 3.0
python-ipy >=0.73 (https://github.com/haypo/python-ipy/wiki)
python3-ipy >=0.73
  (make sure that it is installed for both py2 and py3, i.e. when installing manually run setup.py in py3 and in py 2)
libpcap-dev
libxml2 (pcf)
python-pcapy
libdb-dev
libmysql++-dev
graphviz (to create visual representation of the network state




-----------------------------------------------------------------------------------------------------------

If you are operating Pox SDN controller and you want to gather information about connected computers, you
can patch Pox following instructions given in light/modules/iriiif/pox/README.

-----------------------------------------------------------------------------------------------------------

Compatibility with Ubuntu:

SIMS is fully compatible with both Ubuntu 12.04 LTS and Ubuntu 14.04 LTS, however, the installation
may differ on both versions as some packages are not available in Ubuntu 12.04 by default. This
document describes how to install SIMS in both Ubuntu 12.04 LTS and Ubuntu 14.04 LTS.


To work with SIMS you need to:
- Compile SIMS source
- Run SIMS


Compile:

1. Install dependencies (see above).
2. Type "make" in the top level directory.


Run:

"./sims.sh start" to start the system
You can specify the logging level as a second (optional) parameter [debug|info|warning|error|critical].
"./sims.sh stop" to stop the system

-----------------------------------------------------------------------------------------------------------

You might also be interested in the following publications:

POLČÁK Libor, HRANICKÝ Radek a MARTÍNEK Tomáš. On Identities in Modern Networks.
The Journal of Digital Forensics, Security and Law. 2014, roč. 2014, č. 2, pp.
9-22. ISSN 1558-7215.
http://ojs.jdfsl.org/index.php/jdfsl/issue/view/37

POLČÁK Libor. Challenges in Identification in Future Computer Networks. In:
ICETE 2014 Doctoral Consortium. Wien: SciTePress - Science and Technology
Publications, 2014, pp. 15-24.
https://www.fit.vutbr.cz/~ipolcak/pubs.php.en?id=10516

POLČÁK Libor and FRANKOVÁ Barbora. On Reliability of Clock-skew-based Remote
Computer Identification. In: Proceedings of the 11th International Conference on
Security and Cryptography. Wien: SciTePress - Science and Technology
Publications, 2014, pp. 291-298. ISBN 978-989-758-045-1.
https://www.fit.vutbr.cz/~ipolcak/pubs.php.en?id=10612

POLČÁK Libor, JIRÁSEK Jakub and MATOUŠEK Petr. Comment on "Remote Physical
Device Fingerprinting". IEEE Transactions on Dependable and Secure Computing.
Los Alamitos: IEEE Computer Society, 2014, vol. 11, no. 5, pp. 494-496. ISSN
1545-5971.
https://www.fit.vutbr.cz/~ipolcak/pubs.php.en?id=10377

POLČÁK Libor, HOLKOVIČ Martin and MATOUŠEK Petr. A New Approach for Detection of
Host Identity in IPv6 Networks. In: Proceedings of the 4th International
Conference on Data Communication Networking, 10th International Conference on
e-Business and 4th International Conference on Optical Communication Systems.
Reykjavík: SciTePress - Science and Technology Publications, 2013, pp. 57-63.
ISBN 978-989-8565-72-3.
https://www.fit.vutbr.cz/~ipolcak/pubs.php.en?id=10362

POLČÁK Libor and HOLKOVIČ Martin. Behaviour of various operating systems during
SLAAC, DAD, and ND. 6lab.cz - Networking, IPv6, Security, Brno University of
Technology, 2013.
http://6lab.cz/article/behaviour-of-various-operating-systems-during-slaac-dad-and-nd/

-----------------------------------------------------------------------------------------------------------

PC Fingerprinter, one source of the information is a separate tool with the
repository located at https://github.com/polcak/pcf/.
