UA Part 2: Security - 2 Reference documents

2 Reference documents

The following documents, in whole or in part, are normatively referenced in this document and are indispensable for its application. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies.

OPC 10000-1, OPC UA Specification: Part 1 – Overview and Concepts

DOCPROPERTY Part1URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part1/

OPC 10000-3, OPC UA Specification: Part 3 – Address Space Model

DOCPROPERTY Part3URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part3/

OPC 10000-4, OPC UA Specification: Part 4 – Services

https://www.opcfoundation.org/UA/Part4/

OPC 10000-5, OPC UA Specification: Part 5 – Information Model

DOCPROPERTY Part5URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part5/

OPC 10000-6, OPC UA Specification: Part 6 – Mappings

DOCPROPERTY Part6URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part6/

OPC 10000-7, OPC UA Specification: Part 7 – Profiles

DOCPROPERTY Part7URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part7/

OPC 10000-12, OPC UA Specification: Part 12 – Discovery

DOCPROPERTY Part12URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part12/

OPC 10000-14, OPC UA Specification: Part 14 – PubSub

DOCPROPERTY Part14URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part14/

OPC 10000-18, OPC UA Specification: Part 18: Role-Based Security

DOCPROPERTY Part18URL \* MERGEFORMAT https://www.opcfoundation.org/UA/Part18/

ISA/IEC 62443: Security for industrial automation and control systems

https://webstore.iec.ch/publication/33615

TLS: RFC 2246: The TLS Protocol Version 1.0

https://www.ietf.org/rfc/rfc2246.txt

X509: X.509 Public Key Certificate Infrastructure

https://www.ietf.org/rfc/rfc2459.txt

HTTP: RFC 2616: Hypertext Transfer Protocol - HTTP/1.1

https://www.ietf.org/rfc/rfc2616.txt

HTTPS: RFC 2818: HTTP Over TLS

https://www.ietf.org/rfc/rfc2818.txt

IS Glossary: Internet Security Glossary

https://www.ietf.org/rfc/rfc2828.txt

NIST 800-12: Introduction to Computer Security

https://csrc.nist.gov/publications/nistpubs/800-12/

NIST 800-57: Part 3: Application-Specific Key Management Guidance

https://csrc.nist.gov/publications/nistpubs/800-57/sp800-57_PART3_key-management_Dec2009.pdf

NERC CIP: CIP 002-1 through CIP 009-1, by North-American Electric Reliability Council

https://www.nerc.com/pa/Stand/Cyber%20Security%20Permanent/Cyber_Security_FAQ.pdf

SPP-ICS: Guide to Industrial Control Systems (ICS) Security

https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-82r2.pdf

SHA-1: Secure Hash Algorithm RFC

https://tools.ietf.org/html/rfc3174

PKI: Public Key Infrastructure article in Wikipedia

https://en.wikipedia.org/wiki/Public_key_infrastructure

X509 PKI: Internet X.509 Public Key Infrastructure

https://www.ietf.org/rfc/rfc3280.txt

RFC 5958: Asymmetric Key Packages

https://www.rfc-editor.org/info/rfc5958

PKCS #10: Certification Request Syntax Specification

https://tools.ietf.org/html/rfc2986

OAuth2: The OAuth 2.0 Authorization Framework

https://tools.ietf.org/html/rfc6749

JWT: JSON Web Token (JWT)

https://tools.ietf.org/html/rfc7519

OpenID: OpenID Connect Discovery 1.0

https://openid.net/specs/openid-connect-discovery-1_0.html