3 Terms, definitions, and conventions
3.1 Terms and definitions
For the purposes of this document the following terms and definitions as well as the terms and definitions given in OPC 10000-1, OPC 10000-2, OPC 10000-3, OPC 10000-4, OPC 10000-6 and OPC 10000-9 apply.
3.1.1 CertificateManager
a software application that manages the Certificates used by Applications in an administrative domain.
3.1.2 CertificateGroup
a context used to manage the TrustList and Certificate(s) associated with Applications or Users.
3.1.3 CertificateRequest
a PKCS #10 encoded structure used to request a new Certificate from a Certificate Authority.
3.1.4 ClientUrl
a physical address available on a network that allows Servers to initiate a reverse connection.
3.1.5 DirectoryService
a software application, or a set of applications, that stores and organizes information about resources such as computers or services.
3.1.6 DiscoveryServer
an application that maintains a list of OPC UA Applications that are available on the network and provides mechanisms for other OPC UA Applications to obtain this list.
3.1.7 DiscoveryUrl
a URL for a network Endpoint that provides the information required to connect to a Client or Server.
3.1.8 GlobalDiscoveryServer (GDS)
a Server that provides numerous services related to discovery and security management.
3.1.9 GlobalService
a Server that provides centrally managed Capabilities needed for a system.
3.1.10 IPAddress
a unique number assigned to a network interface that allows Internet Protocol (IP) requests to be routed to that interface.
3.1.11 KeyCredential
a unique identifier and a secret used to access an AuthorizationService or a Broker.
3.1.12 KeyCredentialService
a software application that provides KeyCredentials needed to access an AuthorizationService or a Broker.
3.1.13 LocalDiscoveryServer (LDS)
a DiscoveryServer that maintains a list of all Servers that have registered with it.
3.1.14 LocalDiscoveryServer-ME (LDS-ME)
a LocalDiscoveryServer that includes the MulticastExtension.
3.1.15 MulticastExtension
an extension to a LocalDiscoveryServer that adds support for the mDNS protocol.
3.1.16 MulticastSubnet
a network that allows multicast packets to be sent to all nodes connected to the network.
3.1.17 NonUaApplication
an application which is not an OPC UA Application.
3.1.18 Privilege
a named set of rights which cannot be expressed as Permissions granted on Nodes.
3.1.19 PullManagement
a workflow where a Client manages its configuration by using a GlobalService.
3.1.20 PushManagement
a workflow where a GlobalService manages a Server’s configuration.
3.1.21 ServerCapabilityIdentifier
a short identifier which uniquely identifies a set of discoverable Capabilities supported by an OPC UA Application.
3.2 Abbreviations and symbols
| API | Application Programming Interface |
| CA | Certificate Authority |
| CRL | Certificate Revocation List |
| CSR | Certificate Signing Request |
| DER | Distinguished Encoding Rules |
| DHCP | Dynamic Host Configuration Protocol |
| DNS | Domain Name System |
| EST | Enrolment over Secure Transport |
| GDS | Global Discovery Server |
| HTTP | Hypertext Transfer Protocol |
| IANA | The Internet Assigned Numbers Authority |
| JWT | JSON Web Token |
| LDAP | Lightweight Directory Access Protocol |
| LDS | Local Discovery Server |
| LDS-ME | Local Discovery Server with the Multicast Extension |
| mDNS | Multicast Domain Name System |
| MQTT | Message Queuing Telemetry Transport |
| NAT | Network Address Translation |
| OCSP | Online Certificate Status Protocol |
| PEM | Privacy Enhanced Mail |
| PFX | Personal Information Exchange |
| PKCS | Public Key Cryptography Standards |
| RSA | Rivest–Shamir–Adleman |
| SHA1 | Secure Hash Algorithm |
| SSL | Secure Socket Layer |
| TLS | Transport Layer Security |
| TPM | Trusted Platform Module |
| UA | Unified Architecture |
| UDDI | Universal Description, Discovery and Integration |