What does this research mean for the field?

A standards-aligned cybersecurity risk mitigation model integrating NIST, IEC, and ISO controls effectively reduces high-risk cyber attack scenarios, such as false data injection and denial-of-service, to moderate or low residual risk levels in IEC 61850-based digital substations. Novelty: ClaimNovelty.METHODOLOGICAL. Consensus alignment: ConsensusAlignment.NEUTRAL.

What question did this study set out to answer?

This study aims to develop and validate a cybersecurity risk mitigation model for digital substations based on IEC 61850 architecture.

May 6, 2026Open Access

Cybersecurity Risk Mitigation in Digital Substations Based on a Control Model for Communication Systems: An Experimental Validation

Key Points

This study aims to develop and validate a cybersecurity risk mitigation model for digital substations based on IEC 61850 architecture.
Developed a cybersecurity model integrating standards from NIST, IEC, and ISO for digital substations.
Performed experimental validation in a laboratory environment against false data injection (FDI) and denial-of-service (DoS) attacks.
Conducted a risk assessment to identify high-risk scenarios in the digital substation architecture.
Experimental validation reduced the residual risk of FDI to moderate levels and DoS to low levels.
High-risk scenarios decreased from four to one, demonstrating a 50% reduction in risk exposure.
Analytical reassessment indicated consistent reductions for remaining scenarios, confirming the model's effectiveness.

Abstract

The increasing digitalization of electrical substations, enabled by IEC 61850-based architectures, has improved operational efficiency while expanding the cyber attack surface. This paper introduces a standards-aligned cybersecurity risk mitigation model specifically designed for digital substations and mapped to representative attack scenarios. The model integrates preventive, detective, and application-level controls derived from NIST SP 800-82r3, IEC 62443, and ISO/IEC 27019, and is validated in a laboratory process-bus environment. A baseline risk assessment identified four high-risk scenarios in the studied digital substation architecture. For validation, a selected subset of controls was experimentally evaluated against two representative attack vectors, namely false data injection (FDI) on GOOSE messages and denial-of-service (DoS) against PTP synchronization. For the remaining scenarios, the post-mitigation effects were reassessed analytically based on control coverage, architectural exposure, and standards-aligned cybersecurity reasoning. The experimental validation demonstrated that both empirically tested high-risk scenarios (FDI on GOOSE and DoS on PTP) were effectively mitigated, reducing their residual risk to moderate and low levels, respectively. For the remaining two scenarios, a post-mitigation analytical reassessment based on control coverage and architectural exposure suggested a consistent risk reduction trend, although without direct experimental confirmation. Under this combined empirical–analytical assessment, the number of high-risk scenarios decreased from four to one, corresponding to a 50% experimentally validated reduction in high-risk exposure, complemented by an analytical reassessment of the remaining scenarios. These results provide quantitative evidence about the effectiveness of the model, even with partial implementation. The scientific contribution of this study lies in integrating multistandard cybersecurity requirements into an operational mitigation model tailored to IEC 61850 substations, combined with experimental risk quantification in a realistic process-bus testbed. The proposed model offers practical guidance for utilities and establishes a scalable foundation for advancing cybersecurity in critical power infrastructure.

Cybersecurity Risk Mitigation in Digital Substations Based on a Control Model for Communication Systems: An Experimental Validation

Key Points

Abstract

Cite This Study