Abstract:
Cyber-attacks targeted at critical infrastructure (CI) are now on the increase. This is because as assets, the value or relevance of CI to the society and economy is not quantifiable. CIs are even more vulnerable since failure or disruption in one may cause serious cascading effects in others due to the interconnectivity and interdependencies created among them by internet backbone, an arrangement often referred to as critical information infrastructure (CII). Their protection is both critical and crucial. However, many proposed extant works failed to meet the basic requirements that can make CII safe. Presented in this paper is (NoHiCFI), a notification system for critical information infrastructure based on both hybridized and integrated control flow integrity (HiCFI). The paper recognizes the role of SCADA networks in the control, monitoring, and analyzing of real time raw data through a susceptible internet infrastructure and to prevent attacks, we propose the use of control flow graph (CFG) that ensure that the flow of control of program in execution is not hijacked. Notification alerts in the control flow integrity enforcement module are classified as mild unsafe, severe unsafe and safe modes which triggered background colours in the system. This helps the network defenders to quickly swing into action for proper mitigation activities. The proposed model was simulated using python programming and experiments conducted shown that the performance of CII was enhanced with NoHiCFI which has high values of sensitivity, specificity, precision and accuracy. The results showed that current proposed model outperformed other previously proposed models.
Keywords: Notification System, Critical Informa-tion Infrastructure, Control Flow Integrity, Control Flow Graph, Cyber-attacks, Sensitivity and Specificity rate.
