Minimum security policy
OPC UA requires security policies for clients and servers. Each policy defines a set of algorithms and the length of the keys to make the client-server message exchange secure.
Available security policies
You can select a security policy:
- Aes256_Sha256_RsaPss
- Aes128_Sha256_RsaOaep
- Basic256Sha256
- NoneTIP: This option is only valid if no message signature or encryption is performed. See Minimum message security mode.
OPC UA certificates specifications
The policies supported by the OPC UA standard are updated regularly. Some deprecated policies (for example,
Basic128Rsa15
or Basic256
) are supported only for backward compatibility. The minimum security policy required by the server for the client is set in the properties of the OPC UA server object.
For more information on the security policies, see the OPC UA specifications.
Provide Feedback