Search
11 result(s) for DeviceIdentity Certificates
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding3.1.10 DeviceIdentity CertificateCertificate issued to a Device that identifies the Device . Note 1 to entry: All DeviceIdentity Certificates have the ProductInstanceUri as a subjectAltName . Note 2 to entry: All DeviceIdentity Certificates ... IDevID or LDevID Certificates as defined by 802.1AR . Note 3 to entry: The ProductInstanceUri is the ApplicationUri when the DeviceIdentity Certificate is used to create a SecureChannel
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboardingbacked up nor is it affect by a firmware update. The Private Key of DeviceIdentity Certificates (IDevID and LDevID) shall be placed in this storage. A Device shall have
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding4.3.6 Decommissioningdeleted. Any permissions granted to the Device on the OwnerOperator network are revoked. The DeviceIdentity Certificates and their associated PrivateKeys are not affected by a reset. A Device that
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding6.1 Ticketsneed a relationship with the Manufacturer of the Device to validate the Ticket . DeviceIdentity Certificates are typically signed with a chain ending in a root CA owned by the Manufacturer
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding6.3 AuthenticationRegistrar that detects new Devices added to the network, inspects their DeviceIdentity Certificates and finds the corresponding DeviceIdentityTicket . If a match was found the Device is accepted ... Device is first connected the DCA is configured to use any of its DeviceIdentity Certificates as its Application Instance Certificate . Note that DeviceIdentity Certificates will not have a DNS name
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding7.1 Overviewaccept Devices they do not trust. The steps to determine trust are: Read all DeviceIdentity Certificates from the Device ; Locate a Ticket that has a ProductInstanceUri that matches ... more DeviceIdentity Certificates ; Validate the Ticket if it has not already been validated (see 6.4 ); Select and Validate DeviceIdentity Certificate that matches the Ticket ; Establish a secure connection
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding7.2 Pull ManagementApplication Instance Certificate . Once connected to a Registrar the Device provides all of its DeviceIdentity Certificates to the Registrar which then attempts to locate a valid Ticket that matches ... Certificates . If a Composite Ticket that matches the Device ProductInstanceUri exists then only DeviceIdentity Certificates with the CompositeInstanceUri are considered by the Registrar . If no Ticket is found the Registrar
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding7.3 Push ManagementManagement See 7 for a complete description of the authentication process. Each of the DeviceIdentity Certificates is returned in EndpointDescriptions returned by GetEndpoints . The Registrar looks for a pre-validated
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding8.2.2 BaseTicketTypedate is not known. authorities 2:CertificateAuthorityType [] A list of CAs need to validate DeviceIdentity Certificates on the Device that were installed when the Ticket was created. Its representation
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding9.2.3 ProvideIdentitiescalled by a Device using PullManagement to provide the Registrar with its DeviceIdentity Certificates . The Registrar follows the process described in 7 to select and validate one of the Certificates ... NodeId applicationId, [out] 2:ManagerDescription softwareUpdateManager ); Argument Description identities The DER encoded DeviceIdentity Certificates issued to the Device . The first Certificates shall be the IDevID Certificates. issuers The DER encoded
-
OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding9.2.10 DeviceRegistrarAdminTypeCertificate is in this list. The DeviceIdentityAuthorities Object allows an RegistrarAdmin manage the trusted DeviceIdentity Certificates . This list can contain individual DeviceIdentity Certificates that have a valid Ticket ... contain the issuers for DeviceIdentity Certificates that are provided out of band