← Frameworks / Industrial Standard

IEEE 1686-2022 Standard for Intelligent Electronic Devices Cyber Security Capabilities

International standard defining minimum cybersecurity capabilities required in Intelligent Electronic Devices (IEDs) used in power substations — protective relays, bay controllers, merging units, and phasor measurement units. 10 capability areas covering electronic access control, audit trail, firmware integrity, configuration management, communication security, network filtering, password management, session management, physical port security, and secure development practices. Used for procurement specifications and NERC CIP compliance.

Clauses: 10

Avg Coverage: 73.5%

Publisher: IEEE Version: 2022

IEEE 1686-2022 → SP 800-53 SP 800-53 → IEEE 1686-2022 Coverage Analysis

Clause	Title	SP 800-53 Controls
5.1	Electronic Access Control	AC-02 AC-03 AC-05 AC-06 IA-02 IA-05
5.2	Audit Trail	AU-02 AU-03 AU-04 AU-06 AU-09 AU-12
5.3	Firmware Integrity and Authentication	SI-07 CM-14 SI-16
5.4	Configuration Management	CM-02 CM-03 CM-05 CM-06 CM-08
5.5	Communication Security	SC-08 SC-12 SC-13 SC-23 IA-03
5.6	Network Access and Filtering	SC-07 CM-07 AC-04
5.7	Password Management	IA-05 AC-07
5.8	Session Management	AC-10 AC-11 AC-12 SC-10 SC-23
5.9	Physical Port Security	CM-07 PE-04 AC-03 MP-07
5.10	Secure Development Practices	SA-03 SA-08 SA-11 SA-15 SA-22