Minimum security policy

OPC UA requires security policies for clients and servers. Each policy defines a set of algorithms and the length of the keys to make the client-server message exchange secure.

Available security policies

You can select a security policy:
  • Aes256_Sha256_RsaPss
  • Aes128_Sha256_RsaOaep
  • Basic256Sha256
  • None
    TIP: This option is only valid if no message signature or encryption is performed. See Minimum message security mode.

OPC UA certificates specifications

The policies supported by the OPC UA standard are updated regularly. Some deprecated policies (for example,
Basic128Rsa15
or
Basic256
) are supported only for backward compatibility.
The minimum security policy required by the server for the client is set in the properties of the OPC UA server object.
For more information on the security policies, see the OPC UA specifications.
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.