Search

Scope: Core (OPC-10000-*) All specs

9 result(s) for EphemeralKey

OPC-10000-4 – OPC Unified Architecture - Part 4: Services

3.1.5 EphemeralKey

EphemeralKey public-private key pair generated for each execution of a key establishment process. Note 1 to entry: EphemeralKeys are necessary when using ECC based SecurityPolicies
OPC-10000-2 – OPC Unified Architecture - Part 2: Security Model

4.7 Security Profiles

They include: Asymmetric Encryption algorithm Asymmetric Signature algorithm Certificate Key algorithm Certificate Signature algorithm Ephemeral Key algorithm Key Derivation algorithm Symmetric Encryption algorithm Symmetric Signature algorithm Not all are required
OPC-10000-4 – OPC Unified Architecture - Part 4: Services

7.15 EphemeralKeyType

EphemeralKeyType The EphemeralKeyType parameter is used to return an ECC EphemeralKey needed to provide encrypted data back to the owner of the key. This Structure is used in the additionalHeader ... defined in 7.1 . See OPC 10000-6 for a discussion of ECC EphemeralKeys . The EphemeralKey is created based on an ECC named curve specified by a SecurityPolicy . The SecurityPolicy
OPC-10000-4 – OPC Unified Architecture - Part 4: Services

7.40.2.5 EccEncryptedSecret DataType

encryption. KeyData The KeyData is not encrypted. SenderPublicKey ByteString The Public Key for the EphemeralKey created by the sender. ReceiverPublicKey ByteString The Public Key for the EphemeralKey created
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

6.1 Security Handshake and Security Policies

used with Certificates . EphemeralKeyAlgorithm The algorithm used to create asymmetric key pairs used for EphemeralKey s. SecureChannelNonceLength The length, in bytes, of the Nonces used when opening a SecureChannel . InitializationVectorLength
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

6.8.1 Secure Channel Handshake

Certificate . This list always includes the named curve used for the EphemeralKey , however, it may allow other named curves. OPC UA applications that support ECC SecurityPolicies shall support multiple Certificates ... using an ECC SecurityPolicy the ClientNonce is the Public Key for the Client's EphemeralKey encoded using the Public Key encoding for the curve. Similarly, the ServerNonce is the Public
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

6.8.2 UserIdentityToken Encryption

plans to use for the UserIdentityToken in the RequestHeader . The Server returns an EphemeralKey in the ResponseHeader that can be used for the ECDHPolicyUri specified by the Client ... valid the Server returns Bad_SecurityPolicyRejected in the ResponseHeader instead of an EphemeralKey. When the Client calls ActivateSession it creates an EccEncryptedSecret (see OPC 10000-4 ) using the most recent
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

6.8.3 ECC and RSA-DH Encrypted Secret

encryption. Clause 6.8.1 defines a mechanism that allows the sender to acquire the receiver EphemeralKey when using a Session . Using the EccEncryptedSecret in other contexts requires a different mechanism. Once ... sender has the receiver EphemeralKey, it creates its own EphemeralKey . For ECC algorithms, The ECC curve and key length for the EphemeralKey s are specified by the SecurityPolicy
OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services

9.6.6 StartRequestToken

UserName or IssuedToken SecurityPolicy: ECC or RSA_DH. Not Used An EphemeralKey used to build the EccEncryptedSecret defined in OPC 10000-4 . Certificate A cryptographically random value generated