The SecurityGroupType is formally defined in Table 101.

The Permissionof the SecurityGroupType Objectscontrols the access to the security keys for the SecurityGroupthrough the Method GetSecurityKeys. TheGetSecurityKeys Method is defined in 8.4.

Table 101– SecurityGroupType Definition

Attribute

Value

BrowseName

SecurityGroupType

IsAbstract

False

References

Node Class

BrowseName

DataType

TypeDefinition

Modelling Rule

Subtype of BaseObjectType defined in OPC 10000-5.

HasProperty

Variable

SecurityGroupId

String

PropertyType

Mandatory

HasProperty

Variable

KeyLifetime

Duration

PropertyType

Mandatory

HasProperty

Variable

SecurityPolicyUri

String

PropertyType

Mandatory

HasProperty

Variable

MaxFutureKeyCount

UInt32

PropertyType

Mandatory

HasProperty

Variable

MaxPastKeyCount

UInt32

PropertyType

Mandatory

The Property SecurityGroupIdcontains the identifier for the SecurityGroupused in the key exchange Methods GetSecurityKeysand SetSecurityKeysin the PubSubGroupType.

The Property KeyLifetimedefines the lifetime of a key in milliseconds.

The Property SecurityPolicyUriis the identifier for a SecurityPolicy. SecurityPoliciesdefine the set of algorithms and key lengths used to secure the messages exchanged in the context of the SecurityGroup. The SecurityPoliciesare defined in OPC 10000-7.

The Property MaxFutureKeyCountdefines the maximum number of future keys returned by the Method GetSecurityKeys.

The Property MaxPastKeyCountdefines the maximum number of historical keys stored by the SKS. The historical keys are necessary to allow Subscribersto request keys for older NetworkMessages.