This chapter specifies the OPC UA Information Modelfor a Security Key Service(SKS). The functionality and behaviour of an SKS is described in 5.4.3. It defines the distribution framework for cryptographic keys used for message security.

The SKS can be a network service used to manage keys for all Publishersand Subscribersor it can be part of a Publisherto manage the keys for the NetworkMessagessent by this Publisher.

Figure 34depicts the ObjectTypesand their components used to represent the PublishSubscribeObject.

image037.png

Figure 34– PublishSubscribe Object Types Overview

The PublishSubscribe Objectis the root node for all PubSubrelated configuration Objects. It is an instance of thePubSubKeyServiceTypeor the PublishSubscribeTypeand a component of the Server Object.

The PubSubKeyServiceTypedefines the Methodfor access to security keys and the related management of SecurityGroups.This ObjectTypeis used for the PublishSubscribe Objectif only the Security Key Servicefunctionality is provided. If the PubSubconfiguration functionality is provided, the PublishSubscribeTypeis used instead.

The SecurityGroupsare organized by the SecurityGroupFolderTypeand represented by instances of the SecurityGroupType.

The PublishSubscribeTypecontains the entry points for the PubSub configuration model defined in clause 9.