Search

Scope: Core (OPC-10000-*) All specs

11 result(s) for SignAndEncrypt

OPC-10000-2 – OPC Unified Architecture - Part 2: Security Model

5.1.1 Overview

reconciliation is available in Table 1 . Only eavesdropping and Server profiling require SignAndEncrypt while all other are mitigated with SignOnly . [ (X) indicates indirectly]. Table 1 - Security Reconciliation Threats Summary Attacks
OPC-10000-4 – OPC Unified Architecture - Part 4: Services

5.14.7.1 Description

same for the old and the new Session and the MessageSecurityMode is SIGN or SIGNANDENCRYPT . If the Server transfers the Subscription , it returns the sequence numbers of the NotificationMessages that
OPC-10000-4 – OPC Unified Architecture - Part 4: Services

7.40.4 UserNameIdentityToken

SecureChannel has a SecurityPolicy other than None and the MessageSecurityMode is not SIGNANDENCRYPT . See Table 189 for possible combinations. If the token is to be encrypted the password shall ... than NONE Security Policy - Other Asymmetric algorithm for "Other" Security Policy - Other SIGNANDENCRYPT Security Policy - None No encryption but encrypted SecureChannel (c) Security Policy - Other SIGN Security Policy
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

5.1.15 Messages

Message . The Padding should only be used over SecureChannels with a SecurityMode of SignAndEncrypt . The content of the Padding is ignored
OPC-10000-6 – OPC Unified Architecture - Part 6: Mappings

6.1 Security Handshake and Security Policies

them are shown in Figure 10 . SecurityProtocols shall support three SecurityModes : None , Sign and SignAndEncrypt . If the SecurityMode is None then no security is used and the security handshake shown
OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services

6.4 Application Registration Workflow

services OpenSecureChannel , CreateSession and ActivateSession are used to create a connection with MessageSecurityMode SignAndEncrypt and a user that has the permission to register applications with the GDS. If the user
OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services

7.6 Pull Management Workflow

Services OpenSecureChannel , CreateSession and ActivateSession are used to create a connection with MessageSecurityMode SignAndEncrypt and an Anonymous user. The default CertificateGroup from the Client configuration is used to establish
OPC-10000-14 – OPC Unified Architecture - Part 14: PubSub

7.2.4.4.2 NetworkMessage layout

otherwise the SecurityHeader is omitted. If the SecurityMode in the configuration is SIGN or SIGNANDENCRYPT , this flag shall be set. Bit 5: Timestamp enabled Bit 6: PicoSeconds enabled This ... Signed Bit 1: NetworkMessage Encrypted The configuration options for MessageSecurityMode are NONE , SIGN and SIGNANDENCRYPT . Therefore bit 0 shall be true if bit 1 is true. Bit 2: SecurityFooter enabled
OPC-10000-14 – OPC Unified Architecture - Part 14: PubSub

8.6.1 PubSubKeyPushTargetType definition

shall use to establish a SecureChannel to the PubSubKeyPushTarget . The MessageSecurityMode shall always be SignAndEncrypt . The Property UserTokenType contains the type of user toke to be used for the connection
OPC-10000-17 – OPC Unified Architecture - Part 17: Alias Names

D.1.3 PubSub AliasName Notification Configuration

associated with the published messages. It is the type of security ( None , Sign , SignAndEncrypt ) assigned to the messages. The SecurityGroupId that is associated with the published messages
OPC-10000-81 – OPC Unified Architecture - Part 81: UAFX Connecting Devices and Information Model

9.3.2 SecurityKeyServerAddressType definition

establishment. NOTE SecurityMode is not needed since communication with the SKS shall always be SIGNANDENCRYPT . ServerUri is a string that reflects the ApplicationUri of the SKS. It can be used