Search

15 result(s) for SecureChannels

• OPC-10000-2 – OPC Unified Architecture - Part 2: Security Model
  3.1.49 Transport Layer Security
  Transport Layer Security standard protocol for creating SecureChannels over IP based networks
• OPC-10000-2 – OPC Unified Architecture - Part 2: Security Model
  4.5.2.2 Session application layer
  activated before it can be used, the binding of users, Sessions , and SecureChannels is flexible. Impersonation allows a user to take ownership of an existing Session . If a SecureChannel breaks
• OPC-10000-2 – OPC Unified Architecture - Part 2: Security Model
  4.10 Application Authentication
  Certificate Management). In OPC UA, HTTPS can be used to create SecureChannels , however, these channels do not provide Application Authentication . If Authentication is required, it is based on user credentials
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.5.5.1 Description
  Server Certificate used to create the SecureChannel . This Service can only be invoked via SecureChannels that support Client authentication (i.e. HTTPS cannot be used to call this Service ). A Server
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.5.6.1 Description
  called. See 5.5.3 for more details. This Service can only be invoked via SecureChannels that support Client authentication (i.e. HTTPS cannot be used to call this Service
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.6.2.1 Description
  overlap period has elapsed. A Server application should limit the number of SecureChannels . To protect against misbehaving Clients and denial of service attacks, the Server shall close the oldest unused ... SecureChannel that has no Session assigned before reaching the maximum number of supported SecureChannels . When Session -less Service invocation is done through a transport mapping that requires the OpenSecureChannel Service
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.7.2.1 Description
  Sessions supported by a Server, the Server shall support N+1 SecureChannels . A Server may support multiple Sessions for one SecureChannel . The SecureChannel is always managed by the Communication Stack
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.7.2.2 Parameters
  private key to sign the Nonce provided by the Client in the request. For SecureChannels that use the ApplicationInstanceCertificate the Client shall verify that this Certificate is the same
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.5 X509IdentityTokens
  shall specify a SecurityPolicy for any UserTokenPolicy if the Server supports multiple CertificateKeyAlgorithms for SecureChannels and/or UserTokenPolicies . In addition, the Server shall provide a distinct UserTokenPolicy for each CertificateKeyAlgorithm supported
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  5.1.15 Messages
  that are used for exactly one Message . The Padding should only be used over SecureChannels with a SecurityMode of SignAndEncrypt . The content of the Padding is ignored
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  6.1 Security Handshake and Security Policies
  Specifically, Channel-bound Signature calculations in CreateSession / ActivateSession ; Chained symmetric key derivation when renewing SecureChannels . If FALSE or the parameter is not specified the original mechanisms are used. CertificateThumbprintAlgorithm
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  6.7.2.2 Message Header
  ensures that a Server restart does not cause previously connected Clients to accidently 'reuse' SecureChannels that did not belong to them
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  6.8.1 Secure Channel Handshake
  order in which the encrypted Messages are received. Once the keys are derived ECC SecureChannels behave the same as RSA SecureChannels
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.8.2.5 CloseAndUpdate
  changes the Server shall re-evaluate the Certificate associated with any open Sessions and SecureChannels. Sessions or SecureChannels with an untrusted or revoked Certificate shall be closed. This process
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.9 ApplyChanges
  Good and the transaction is closed. When a Server Certificate or TrustList changes active SecureChannels are not immediately affected. This ensures the caller of ApplyChanges can get a response ... Method call. Once the Method response is returned the Server shall force existing SecureChannels affected by the changes to renegotiate and use the new Server Certificate and/or TrustLists. Servers