← Frameworks / IEEE 1686-2022 / Control Mappings

IEEE 1686-2022 Standard for Intelligent Electronic Devices Cyber Security Capabilities

International standard defining minimum cybersecurity capabilities required in Intelligent Electronic Devices (IEDs) used in power substations — protective relays, bay controllers, merging units, and phasor measurement units. 10 capability areas covering electronic access control, audit trail, firmware integrity, configuration management, communication security, network filtering, password management, session management, physical port security, and secure development practices. Used for procurement specifications and NERC CIP compliance.

Controls: 40

Total Mappings: 44

Publisher: IEEE Version: 2022

IEEE 1686-2022 → SP 800-53 SP 800-53 → IEEE 1686-2022 Coverage Analysis

AC (9) AU (6) CM (7) IA (3) MP (1) PE (1) SA (5) SC (6) SI (2)

AC Access Control

Control	Name	IEEE 1686-2022 References
AC-02	Account Management	5.1
AC-03	Access Enforcement	5.15.9
AC-04	Information Flow Enforcement	5.6
AC-05	Separation Of Duties	5.1
AC-06	Least Privilege	5.1
AC-07	Unsuccessful Login Attempts	5.7
AC-10	Concurrent Session Control	5.8
AC-11	Session Lock	5.8
AC-12	Session Termination	5.8

AU Audit and Accountability

Control	Name	IEEE 1686-2022 References
AU-02	Auditable Events	5.2
AU-03	Content Of Audit Records	5.2
AU-04	Audit Storage Capacity	5.2
AU-06	Audit Monitoring, Analysis, And Reporting	5.2
AU-09	Protection Of Audit Information	5.2
AU-12	Audit Record Generation	5.2

CM Configuration Management

Control	Name	IEEE 1686-2022 References
CM-02	Baseline Configuration	5.4
CM-03	Configuration Change Control	5.4
CM-05	Access Restrictions For Change	5.4
CM-06	Configuration Settings	5.4
CM-07	Least Functionality	5.65.9
CM-08	Information System Component Inventory	5.4
CM-14	Signed Components	5.3

IA Identification and Authentication

Control	Name	IEEE 1686-2022 References
IA-02	User Identification And Authentication	5.1
IA-03	Device Identification And Authentication	5.5
IA-05	Authenticator Management	5.15.7

MP Media Protection

Control	Name	IEEE 1686-2022 References
MP-07	Media Use	5.9

PE Physical and Environmental Protection

Control	Name	IEEE 1686-2022 References
PE-04	Access Control For Transmission Medium	5.9

SA System and Services Acquisition

Control	Name	IEEE 1686-2022 References
SA-03	Life Cycle Support	5.10
SA-08	Security Engineering Principles	5.10
SA-11	Developer Security Testing	5.10
SA-15	Development Process, Standards, and Tools	5.10
SA-22	Unsupported System Components	5.10

SC System and Communications Protection

Control	Name	IEEE 1686-2022 References
SC-07	Boundary Protection	5.6
SC-08	Transmission Integrity	5.5
SC-10	Network Disconnect	5.8
SC-12	Cryptographic Key Establishment And Management	5.5
SC-13	Use Of Cryptography	5.5
SC-23	Session Authenticity	5.55.8

SI System and Information Integrity

Control	Name	IEEE 1686-2022 References
SI-07	Software And Information Integrity	5.3
SI-16	Memory Protection	5.3