Search

12 result(s) for ServerNonce

• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.6.2.2 Parameters
  should be a sensible value based on the capabilities and configuration of the Server . serverNonce ByteString A random number that shall not be used in any other request ... serverNonce shall be generated for each time a SecureChannel is renewed. This parameter shall have a length equal to the SecureChannelNonceLength defined for the SecurityPolicy
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  5.7.3.1 Description
  CreateSession request. The data to sign is described in 6.1.8 . Once used, a serverNonce cannot be used again. For that reason, the Server returns a new serverNonce each time ... associated with the Certificate . The data to sign is created by appending the last serverNonce to the serverCertificate specified in the CreateSession response. If a token includes a secret then
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  6.1.8 Calculating Signatures used in CreateSession and ActivateSession
  Certificate ( Client ChannelCertificate ); The Server Application Certificate ( ServerCertificate ); The Client Application Certificate ( ClientCertificate ); The ServerNonce returned in CreateSession or ActivateSession ; The ClientNonce passed in CreateSession ; The ChannelThumbprint is a unique ... Sign Signer ServerSignature (see 5.7.2 ) ChannelThumbprint | ClientNonce | HASH(Server ChannelCertificate) | HASH(Client ChannelCertificate) | ServerNonce ServerCertificate ClientSignature (see 5.7.3 ) ChannelThumbprint | ServerNonce | HASH(ServerCertificate) | HASH(Server ChannelCertificate) | HASH(Client ChannelCertificate) | ClientNonce ClientCertificate
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.2.2 Legacy Encrypted Token Secret Format
  Legacy Encrypted Token Secret Format When encrypting a UserIdentityToken, the Client appends the last ServerNonce to the secret. The data is then encrypted with the public key from the Server ... Description Length Byte [4] The length of the data to be encrypted including the ServerNonce but excluding the length field. This field is a 4-byte unsigned integer encoded with
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.2.3 EncryptedSecret Format
  data is structured for different SecurityPolicies . Nonce ByteString This is the last serverNonce returned in the CreateSession or ActivateSession Response when a UserIdentityToken is passed with the ActivateSession Request
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.2.4 RsaEncryptedSecret DataType
  initialization vector used with the EncryptingKey . Nonce ByteString A Nonce . This is the last ServerNonce returned in the CreateSession or ActivateSession Response when proving a UserIdentityToken passed in the ActivateSession
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.2.5 EccEncryptedSecret DataType
  EphemeralKey created by the receiver. Nonce ByteString A Nonce . This is the last ServerNonce returned in the CreateSession or ActivateSession Response when proving a UserIdentityToken passed in the ActivateSession Request
• OPC-10000-4 – OPC Unified Architecture - Part 4: Services
  7.40.4 UserNameIdentityToken
  serialized as described in 7.40.2.5 . The Server shall decrypt the password and verify the ServerNonce . If the SecurityPolicy is None then the password only contains the UTF-8 encoded password
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  6.7.6 Deriving keys
  value of the ClientNonce provided in the OpenSecureChannel request. ServerSecret The value of the ServerNonce provided in the OpenSecureChannel response. ServerSeed The value of the ServerNonce provided in the OpenSecureChannel
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  6.8.1 Secure Channel Handshake
  Client's EphemeralKey encoded using the Public Key encoding for the curve. Similarly, the ServerNonce is the Public Key for the Server's EphemeralKey . The encoding of the EphemeralKeys depends ... normative source. Step 1: Calculate Salts ServerSalt = L | UTF8(opcua-server) | ServerNonce | ClientNonce ClientSalt = L | UTF8(opcua-client) | ClientNonce | ServerNonce Where L is the length of derived key material
• OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings
  6.9 Diffie-Hellman Key Agreement (RSA)
  number (b). It then calculates the DH PublicKey with: B = gb mod p The ServerNonce (B) is encoded as zero padded big-endian OctetString. The shared secret is calculated
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  9.6.7 FinishRequestToken
  channel bound signatures defined in OPC 10000-4 where the ServiceData replaces the ServerNonce and the RequestorData replaces the ClientNonce . This Method shall be called from an encrypted SecureChannel