uaCap:Transport uatcp secure

From UaCapabilities
Revision as of 12:17, 2 February 2015 by Karl (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search


A TCP-based protocol with binary encoding that uses a secure channel between communicating OPC UA applications. Uses the Public Key Infrastructure (PKI) standards to enable applications to identify themselves with an X.509 Certificate (Application Instance Certificate). Includes

  • Authentication of communication partner based on digital certificates that are exchanged during the establishment of a secure channel
  • Efficient Data encryption algorithms to provide Confidentiality
  • Efficient Message signatures to provide Integrity

Usage Considerations

  • Application authentication allows restricting access to trusted parties.
  • End-to-end encryption offers uninterrupted protection of data between client and server resulting in a higher degree of security than transport protocols that protect messages by establishing secure connection between two hosts (HTTPS, for example).
  • Can be applied to a wide range of devices and application, from control and field devices that require security to enterprise level applications.

Conformance Testing

Client Server