Certificates in the PACSystems OPCUA Server ka21t000000Cc4TAAS | Emerson Customer Center

Certificates in the PACSystems OPCUA Server


  • Id:
  • 000052856
  • Average User Rating:
  • Your Rating:
  • Last Updated: Wed Aug 26 20:19:41 GMT 2020
  • Date Created: Wed Aug 26 20:19:41 GMT 2020
  • Products: PACSystems RX3i PAC Security Center
  • Categories: Solution

Description

Security is an integral part of OPC UA technology. 

OPC UA provides security in two different aspects:
  1. Allowing or avoiding a client could connect to a server (Authentication) 
  2. Providing a secure communication channel.


Resolution

OPC UA technology allows using Certificates in both aspects.  A certificate is an electronic document with information affirmed by a trusted party.


1. PACSystems OPC UA server does not allow Authentication Certificates: only Anonymous or User/Password connections are supported (Refer to the following article, How to Configure the Authentication Methods in OPC UA Sever).

2. PACSystems OPC UA server provides a secure connection by using Certificates. The establishment of a secure connection is done using public key cryptography.  Public key cryptography uses a paired public and private key to establish a secure channel. The public key is distributed to applications by means of a certificate. Certificates are supported in PACSystems starting in the following firmware and PME Versions:
 
  • CPE302/CPE305     fw. 9:90 PME 9.5 SIM16
  • CPE310                   fw: 9.90 PME 9.5 SIM17
  • CPE330                   fw: 9.90 PME 9.5 SIM16
  • CPE400/CPL410     fw: 9.90 PME 9.5 SIM16

PACSecurity Center is the tool for managing the certificates and provisioning or validating them to Servers and Clients.
Refer to the PAC Security Center - Landing Page for more information.