A Fixed-Latency Architecture to Secure GOOSE and Sampled Value Messages in Substation Systems

International Electrotechnical Commission (IEC) 62351-6 standard specifies the security mechanisms to protect real-time communications based on IEC 61850. Generic Object Oriented Substation Events (GOOSE) and Sampled Value (SV) messages must be generated, transmitted processed in less than 3 ms, which challenges introduction of 62351-6. After evaluating threats 61850 state art GOOSE SV security, this work presents a novel architecture wire-speed processing able provide message authentication confidentiality. This has been implemented tested evaluate its performance, resource usage, latency introduced. Other proposals scientific literature do not support traffic, so they are suitable for messages. Whereas others exceed target ms or comply with standards, our design authenticates encrypts data 7 μs-predictable latency-, complies 62351:2020.