Search

Scope: Core (OPC-10000-*) All specs

6 result(s) for Certificates.

OPC-10000-2 – OPC Unified Architecture - Part 2: Security Model

9.2 Self signed certificate management

installation is the effort required to deploy and maintain the Certificates. The choice of when to use a CA issued Certificate versus a self-signed Certificate depends on the installation ... illustrates the work that is required to maintain the TrustList for self-signed Certificates . Figure 11 - Manual Certificate handling An administrator would be required to copy the Public Key associated
OPC-10000-4 – OPC Unified Architecture - Part 4: Services

6.1.3 Determining if a Certificate is trusted

only trusted if its chain can be validated. Applications shall rely on lists of Certificates provided by the Administrator to determine trust. There are two separate lists: a list ... trusted Certificates and a list of issuer Certificates (i.e. CAs). The list of trusted Certificates may contain a Certificate issued to another Application or it may be a Certificate belonging
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

6.8.1 Secure Channel Handshake

allow other named curves. OPC UA applications that support ECC SecurityPolicies shall support multiple Certificates. ECC Public Keys and digital signatures are the output of an ECC operation. The encoding
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding

5.1 Device Identity

electronic reading (e.g. RFID, QR code, bar code, et. al.). The IDevID and LDevID Certificates shall conform to 802.1AR . The term DeviceIdentity Certificate is used to describe IDevID ... LDevID Certificates that meet the requirements of this document. The mechanisms for creating, installing, securing and revoking the IDevID and LDevID Certificates depend on the Manufacturer , however, Devices should provide
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding

8.2.6 CertificateAuthorityType

CertificateAuthorityType The CertificateAuthorityType describes a Certificate Authority (CA) used to issue Certificates to Devices , Composites or to organizations that create Tickets . The fields of this DataType are defined in Table ... authorityCertificate 0:ByteString The DER encoded Certificate used to issue Certificates. issuerCertificates 0:ByteString [] The DER encoded form of the Issuer for the authorityCertificate. It should include the entire chain
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding

9.2.3 ProvideIdentities

called by a Device using PullManagement to provide the Registrar with its DeviceIdentity Certificates . The Registrar follows the process described in 7 to select and validate one of the Certificates ... NodeId applicationId, [out] 2:ManagerDescription softwareUpdateManager ); Argument Description identities The DER encoded DeviceIdentity Certificates issued to the Device . The first Certificates shall be the IDevID Certificates. issuers The DER encoded