QuickOPC User's Guide and Reference
OPC UA Client-Server Security
Fundamentals > Security > OPC UA Client-Server Security
In This Topic

Introduction

OPC Unified Architecture is designed as secure solution from the ground up. The result is a solid, secure infrastructure that can be, at the same time, complex to understand, and sometimes difficult to deploy and configure properly.

Security in OPC UA is a broad subject that we cannot and will not cover in detail here. It is recommended that you study available materials. Here are some useful links that can get you started:

QuickOPC-UA attempts to simplify the security configuration where possible, but a reasonable level of understanding OPC-UA security is still needed.

Application Security

OPC UA supports mutual authentication of clients to servers, and servers to clients. In a secure OPC UA communication, the client and server applications must identify and authenticate themselves with the use of certificates. Depending on the communication method, OPC UA can also tie this mechanism to encryption and signing of the messages exchanged.

User Security

In addition to application security, in some scenarios it also plays a role who is the user of the application. Different user groups may be given different permissions to the application. See OPC UA User Authentication for information about how to provide the user information in your application.

See Also
Providing OPC UA Client Instance Certificate
Trusting OPC UA Server HTTPS Certificate
Trusting OPC UA Server Instance Certificate
Security in OPC UA Endpoint Selection
Unsolicited User Interaction
Identifying Information in OPC UA Client-Server
Fundamentals
OPC UA Certificate Stores
Security
OPC UA PubSub Security
OPC UA User Authentication
OPC UA Application Manifest

 

 

Copyright © 2004-2023 CODE Consulting and Development, s.r.o., Plzen. All rights reserved. Web page: www.opclabs.com

Send Documentation Feedback. Resources: Knowledge Base. Technical support: Online Forums, FAQ.