Search

24 result(s) for EndpointDescription

• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.14 EndpointDescription
  EndpointDescription The components of this parameter are defined in Table 135 . Table 135 - EndpointDescription Name Type Description EndpointDescription structure Describes an Endpoint for a Server . endpointUrl String ... Transport Profiles . securityLevel Byte A numeric value that indicates how secure the EndpointDescription is compared to other EndpointDescriptions for the same Server . A value of 0 indicates that the EndpointDescription
• OPC-10000-2 – OPC Unified Architecture - Part 2: Security Model
  8.2 Rogue GDS
  Server's Certificate matches the one that the Client used to connect. The EndpointDescription provided by the Server includes a relative SecurityLevel that is used to determine if the most
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.5.1 Overview
  specified in the Server Certificate is the same as the ApplicationUri provided in the EndpointDescription returned from CreateSession response . The Server Certificate returned in CreateSession response is the same ... Certificate is the same as the HostName contained in the endpointUrl provided in the EndpointDescription returned by CreateSession . If there is a difference then the Client shall report the difference
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.5.4.1 Description
  security configurations for the same Endpoint . In this situation, the Server shall return separate EndpointDescription records for each available configuration. Clients should treat each of these configurations as distinct Endpoints ... UserTokenPolicies requires encryption, the Server shall include the ApplicationInstanceCertificate in the EndpointDescription . Each EndpointDescription also specifies a URI for the Transport Profile that the Endpoint supports. The Transport Profiles specify
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.5.4.2 Parameters
  Response responseHeader ResponseHeader Common response parameters. The ResponseHeader type is defined in 7.33 . Endpoints [] EndpointDescription List of Endpoints that meet criteria specified in the request. This list is empty ... Endpoints meet the criteria. The EndpointDescription type is defined
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.5.5.1 Description
  described in 5.6 . The Administrator of the Server shall provide the Server with an EndpointDescription for the Discovery Server as part of the configuration process. Discovery Servers shall reject registrations
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.6.1 Overview
  SecureChannel is opened and closed by the Client using the SecureChannel Services . An EndpointDescription tells a Client how to establish a SecureChannel with a given Endpoint . A Client may obtain ... EndpointDescription from a Discovery Server , via some non-UA defined directory server or from its own configuration. The exact algorithms used to sign and encrypt Messages are described
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.6.2.1 Description
  Certificate . Clients should be prepared to replace the HostName and port returned in the EndpointDescription with the HostName or the IP addresses and the port they used to call GetEndpoints
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.7.2.1 Description
  that the ApplicationUri specified in the Server Certificate matches the ApplicationUri provided in the EndpointDescription returned by the CreateSession response. If it does not match, the Client shall close
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.7.2.2 Parameters
  none of the UserTokenPolicies requires encryption, the Client shall ignore the ApplicationInstanceCertificate . serverEndpoints [] EndpointDescription List of Endpoints that the Server supports. The Server shall return a set of EndpointDescriptions available ... request. All Endpoints are returned if the serverUri is null or empty. The EndpointDescription type is defined in 7.14 . If the Client used a DiscoveryEndpoint to select the security options
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  6.1.4 Creating a SecureChannel
  rogue Server . For this reason the Client shall verify that the ServerCertificate in the EndpointDescription is a trusted Certificate before it calls CreateSession . The second security risk comes from
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.2.1 Overview
  Server . Each UserIdentityToken allowed by an Endpoint shall have a UserTokenPolicy specified in the EndpointDescription . The UserTokenPolicy specifies what SecurityPolicy to use when encrypting or signing. If this SecurityPolicy ... null or empty then the Client uses the SecurityPolicy in the EndpointDescription . If the matching SecurityPolicy is set to None then no encryption or signature is required. The possible SecurityPolicies
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.4 UserNameIdentityToken
  AsymmetricEncryptionAlgorithm for the UserNameIdentityToken and IssuedIdentityToken. The SecureChannel SecurityPolicy URI is specified in the EndpointDescription and used in subsequent OpenSecureChannel requests. The UserTokenPolicy SecurityPolicy URI is specified in the EndpointDescription
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.41 UserTokenPolicy
  this value is null or empty. When a UserTokenPolicy is returned in an EndpointDescription all of the information needed to use that UserTokenPolicy shall be in the EndpointDescription. For example ... UserTokenPolicy requiring RSA based encryption algorithms can only be returned in EndpointDescription with an RSA ServerCertificate. If the SecurityMode is None, SecurityPolicies based
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  6.8.2 UserIdentityToken Encryption
  SecurityPolicyUri that is different than the SecureChannel (see OPC 10000-4 ). For example, an EndpointDescription providing an ECC SecurityPolicyUri does not specify RSA SecurityPolicyUris in the UserTokenPolicies . When a Client
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  7.4.1 Overview
  encryption is enabled. The cryptography algorithms used by HTTPS have no relationship to the EndpointDescription SecurityPolicy and are determined by the policies set for HTTPS and are outside the scope
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.23 ServerEndpointDataType
  returned by the Server when GetEndpoints is called. The basic algorithm generates an EndpointDescription for each valid combination of SecurityPolicyUri, SecurityMode and Certificate (specified in the SecuritySettings ). The EndpointDescription returned ... SecurityPolicyUri . Any UserTokenSetting that is not valid for ServerCertificate associated with a generated EndpointDescription is rejected. The Server chooses unique values for PolicyIds in UserTokenPolicies when building the EndpointDescriptions
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.24 SecuritySettingsDataType
  SecurityPolicyUri is valid for more than one Certificate in the CertificateGroup, then an EndpointDescription is generated for each Certificate. EndpointDescriptions generated with a None SecurityMode only use the SecurityPolicyUris
• OPC-10000-14 – OPC Unified Architecture - Part 14: PubSub
  5.3.7 SecurityGroup
  distributed as metadata together with the DataSetMetaData . The metadata for a SecurityGroupId includes the EndpointDescription of the responsible SKS. Publishers and Subscribers use the EndpointDescription to access
• OPC-10000-14 – OPC Unified Architecture - Part 14: PubSub
  6.2.5.4 SecurityKeyServices
  SecurityKeyServices SecurityKeyServices is an array of the DataType EndpointDescription and defines one or more Security Key Servers (SKS) that manage the security keys for the SecurityGroup assigned to the PubSubGroup ... EndpointDescription DataType is defined in OPC 10000-4 . The parameter is null if the SecurityMode is NONE . Each element in the array is an Endpoint for an SKS that
• OPC-10000-14 – OPC Unified Architecture - Part 14: PubSub
  7.2.4.6.6 ServerEndpoints
  Table 172 . Table 172 - Publisher Endpoints announcement message structure Name Type Description Endpoints EndpointDescription[] The OPC UA Server Endpoints of the Publisher . The EndpointDescription is defined
• OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding
  7.1 Overview
  security on the Device Configuration Application (DCA). The DCA shall provide at least one EndpointDescription for each DeviceIdentity Certificate . The Registrar chooses a DeviceIdentity Certificate, establishes a secure connection using ... EndpointDescription that uses that Certificate. This provides proof that the Device possesses the PrivateKey associated with the Certificate . The Registrar uses the SecureChannel to provide an Application Instance Certificate
• OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding
  7.3 Push Management
  Signatures and the ability to check its revocation status. If the Registrar finds an EndpointDescription that matches a valid Ticket it will create a new SecureChannel using that EndpointDescription
• OPC-10000-81 – OPC Unified Architecture - Part 81: UAFX Connecting Devices and Information Model
  13.2.1 Locating Server
  require user authentication or specific application certificates) If SecurityPolicyUri contains "BestAvailable", the EndpointDescription with the highest SecurityLevel of the ones supported by the Client and matching the requested ... SecurityMode (see 9.2.2 ) shall be chosen. Otherwise, the EndpointDescription matching the requested SecurityMode and SecurityPolicyUri (see 9.2.2 ) shall be chosen. The complete process, including NodeId resolution, is illustrated in Figure