Errata exists for this version of the document.

An attacker who builds a malicious OPC UA Publisher or installs an unauthorized instance of a genuine OPC UA Publisher in a system. The rouge Publisher may attempt to masquerade as a legitimate UA Publisher or it may simply appear as a new Publisher in the system.

A rogue Publisher impacts all of the security objectives except Integrity and Non-Repudiation.

See 5.1.10 for the reconciliation of this threat.