Challenges and research directions for heterogeneous cyber–physical system based on IEC 61850: Vulnerabilities, security requirements, and security architecture

• There are security concerns in the heterogeneous CPS environment based on IEC 61850.
• Two connections (IEC 61850-DNP3, IEC 61850-IEC 61970) are drawn from a case study.
• We classify the security vulnerabilities of the heterogeneous protocol environment.
• We present security requirements and architectures in the heterogeneous CPS environment.

IEC 61850, an international standard for communication networks, is becoming prevalent in the cyber–physical system (CPS) environment, especially with regard to the electrical grid. Recently, since cyber threats in the CPS environment have increased, security matters for individual protocols used in this environment are being discussed at length. However, there have not been many studies on the types of new security vulnerabilities and the security requirements that are required in a heterogeneous protocol environment based on IEC 61850. In this paper, we examine the electrical grid in Korea, and discuss security vulnerabilities, security requirements, and security architectures in such an environment.