iTeh Standards logo
EURUSD
Your shopping cart is empty.
IEC

IEC 62541-6:2015

(Main)

OPC unified architecture - Part 6: Mappings

OPC unified architecture - Part 6: Mappings

IEC 62541-6:2015 specifies the OPC Unified Architecture (OPC UA) mapping between the security model described in IEC TR 62541-2, the abstract service definitions, described in IEC 62541-4, the data structures defined in IEC 62541-5 and the physical network protocols that can be used to implement the OPC UA specification. This second edition cancels and replaces the first edition published in 2011 and constitutes a technical revision. This edition includes the following changes:
- A new HTTPS transport has been defined;
- Added an additional padding byte to handle asymmetric key sizes larger than 2048 bits. Fixed errors in SOAP action URIs;
- Needed a standard way to serialize nodes in an address space. Added the UANodeSet schema defined in Annex F.

Architecture unifiée OPC - Partie 6: Correspondances

L'IEC 62541-6:2015 spécifie les correspondances de l'architecture unifiée OPC (OPC UA) entre le modèle de sécurité décrit dans l'IEC TR 62541-2, les définitions de services abstraits décrites dans l'IEC 62541-4, les structures de données définies dans l'IEC 62541-5 et les protocoles de réseaux physiques qui peuvent être utilisés pour mettre en oeuvre la spécification OPC UA. Cette deuxième édition annule et remplace la première édition parue en 2011. Elle constitue une révision technique. Elle inclut les modifications suivantes:
- Un nouveau protocole de transport HTTPS;
- Ajout d'un octet de remplissage supplémentaire pour gérer les tailles des clés asymétriques de longueur supérieure à 2048 bits. Définition des erreurs fixes dans les URI d'action SOAP;
- Ajout du schéma de l'Ensemble de Noeuds UA (UANodeSet) défini à l'Annexe F.

General Information

Status
Published
Publication Date
24-Mar-2015
ICS
25.040.40 - Industrial process measurement and control
35.100.05 - Multilayer applications
Technical Committee
SC 65E - Devices and integration in enterprise systems
Drafting Committee
WG 8 - TC 65/SC 65E/WG 8
Current Stage
DELPUB - Deleted Publication
Start Date
13-Jul-2020
Completion Date
29-Sep-2017
Ref Project

Relations

Revised
IEC 62541-6:2020 - OPC Unified Architecture - Part 6: Mappings
Effective Date
05-Sep-2023
Revises
IEC 62541-6:2011 - OPC unified architecture - Part 6: Mappings
Effective Date
05-Sep-2023
IEC 62541-6:2015 - OPC unified architecture - Part 6: MappingsIEC 62541-6:2015 - OPC unified architecture - Part 6: Mappings
PreviousNext
Standard
IEC 62541-6:2015 - OPC unified architecture - Part 6: Mappings
English and French language
172 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)


IEC 62541-6 ®
Edition 2.0 2015-03
INTERNATIONAL
STANDARD
NORME
INTERNATIONALE
colour
inside
OPC unified architecture –
Part 6: Mappings
Architecture unifiée OPC –
Partie 6: Correspondances
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form
or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from
either IEC or IEC's member National Committee in the country of the requester. If you have any questions about IEC
copyright or have an enquiry about obtaining additional rights to this publication, please contact the address below or
your local IEC member National Committee for further information.

Droits de reproduction réservés. Sauf indication contraire, aucune partie de cette publication ne peut être reproduite
ni utilisée sous quelque forme que ce soit et par aucun procédé, électronique ou mécanique, y compris la photocopie
et les microfilms, sans l'accord écrit de l'IEC ou du Comité national de l'IEC du pays du demandeur. Si vous avez des
questions sur le copyright de l'IEC ou si vous désirez obtenir des droits supplémentaires sur cette publication, utilisez
les coordonnées ci-après ou contactez le Comité national de l'IEC de votre pays de résidence.

IEC Central Office Tel.: +41 22 919 02 11
3, rue de Varembé Fax: +41 22 919 03 00
CH-1211 Geneva 20 info@iec.ch
Switzerland www.iec.ch
About the IEC
The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publishes
International Standards for all electrical, electronic and related technologies.

About IEC publications
The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the
latest edition, a corrigenda or an amendment might have been published.

IEC Catalogue - webstore.iec.ch/catalogue Electropedia - www.electropedia.org
The stand-alone application for consulting the entire The world's leading online dictionary of electronic and
bibliographical information on IEC International Standards, electrical terms containing more than 30 000 terms and
Technical Specifications, Technical Reports and other definitions in English and French, with equivalent terms in 15
documents. Available for PC, Mac OS, Android Tablets and additional languages. Also known as the International
iPad. Electrotechnical Vocabulary (IEV) online.

IEC publications search - www.iec.ch/searchpub IEC Glossary - std.iec.ch/glossary
The advanced search enables to find IEC publications by a More than 60 000 electrotechnical terminology entries in
variety of criteria (reference number, text, technical English and French extracted from the Terms and Definitions
committee,…). It also gives information on projects, replaced clause of IEC publications issued since 2002. Some entries
and withdrawn publications. have been collected from earlier publications of IEC TC 37,

77, 86 and CISPR.
IEC Just Published - webstore.iec.ch/justpublished
Stay up to date on all new IEC publications. Just Published IEC Customer Service Centre - webstore.iec.ch/csc
details all new publications released. Available online and If you wish to give us your feedback on this publication or
also once a month by email. need further assistance, please contact the Customer Service
Centre: csc@iec.ch.
A propos de l'IEC
La Commission Electrotechnique Internationale (IEC) est la première organisation mondiale qui élabore et publie des
Normes internationales pour tout ce qui a trait à l'électricité, à l'électronique et aux technologies apparentées.

A propos des publications IEC
Le contenu technique des publications IEC est constamment revu. Veuillez vous assurer que vous possédez l’édition la
plus récente, un corrigendum ou amendement peut avoir été publié.

Catalogue IEC - webstore.iec.ch/catalogue Electropedia - www.electropedia.org
Application autonome pour consulter tous les renseignements
Le premier dictionnaire en ligne de termes électroniques et
bibliographiques sur les Normes internationales,
électriques. Il contient plus de 30 000 termes et définitions en
Spécifications techniques, Rapports techniques et autres
anglais et en français, ainsi que les termes équivalents dans
documents de l'IEC. Disponible pour PC, Mac OS, tablettes
15 langues additionnelles. Egalement appelé Vocabulaire
Android et iPad.
Electrotechnique International (IEV) en ligne.

Recherche de publications IEC - www.iec.ch/searchpub
Glossaire IEC - std.iec.ch/glossary
Plus de 60 000 entrées terminologiques électrotechniques, en
La recherche avancée permet de trouver des publications IEC
en utilisant différents critères (numéro de référence, texte, anglais et en français, extraites des articles Termes et
comité d’études,…). Elle donne aussi des informations sur les Définitions des publications IEC parues depuis 2002. Plus
projets et les publications remplacées ou retirées. certaines entrées antérieures extraites des publications des

CE 37, 77, 86 et CISPR de l'IEC.
IEC Just Published - webstore.iec.ch/justpublished

Service Clients - webstore.iec.ch/csc
Restez informé sur les nouvelles publications IEC. Just
Published détaille les nouvelles publications parues. Si vous désirez nous donner des commentaires sur cette
Disponible en ligne et aussi une fois par mois par email. publication ou si vous avez des questions contactez-nous:
csc@iec.ch.
IEC 62541-6 ®
Edition 2.0 2015-03
INTERNATIONAL
STANDARD
NORME
INTERNATIONALE
colour
inside
OPC unified architecture –
Part 6: Mappings
Architecture unifiée OPC –
Partie 6: Correspondances
INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
COMMISSION
ELECTROTECHNIQUE
INTERNATIONALE
ICS 25.040.40; 35.100 ISBN 978-2-8322-2373-4

– 2 – IEC 62541-6:2015 © IEC 2015
CONTENTS
FOREWORD . 7
1 Scope . 9
2 Normative references . 9
3 Terms, definitions, abbreviations and symbols . 11
3.1 Terms and definitions . 11
3.2 Abbreviations and symbols . 11
4 Overview . 12
5 Data encoding . 13
5.1 General . 13
5.1.1 Overview . 13
5.1.2 Built-in Types . 13
5.1.3 Guid . 14
5.1.4 ByteString . 15
5.1.5 ExtensionObject` . 15
5.1.6 Variant . 15
5.2 OPC UA Binary . 16
5.2.1 General. 16
5.2.2 Built-in Types . 16
5.2.3 Enumerations. 25
5.2.4 Arrays . 25
5.2.5 Structures . 25
5.2.6 Messages . 26
5.3 XML . 26
5.3.1 Built-in Types . 26
5.3.2 Enumerations. 33
5.3.3 Arrays . 33
5.3.4 Structures . 33
5.3.5 Messages . 34
6 Message SecurityProtocols . 34
6.1 Security handshake . 34
6.2 Certificates . 35
6.2.1 General. 35
6.2.2 Application Instance Certificate . 36
6.2.3 Signed Software Certificate. 36
6.3 Time synchronization . 37
6.4 UTC and International Atomic Time (TAI) . 37
6.5 Issued User Identity Tokens – Kerberos . 38
6.6 WS Secure Conversation . 38
6.6.1 Overview . 38
6.6.2 Notation . 40
6.6.3 Request Security Token (RST/SCT) . 40
6.6.4 Request Security Token Response (RSTR/SCT) . 41
6.6.5 Using the SCT . 42
6.6.6 Cancelling Security contexts . 42
6.7 OPC UA Secure Conversation . 43
6.7.1 Overview . 43

6.7.2 MessageChunk structure . 43
6.7.3 MessageChunks and error handling . 46
6.7.4 Establishing a SecureChannel . 47
6.7.5 Deriving keys . 48
6.7.6 Verifying Message Security . 49
7 Transport Protocols . 50
7.1 OPC UA TCP . 50
7.1.1 Overview . 50
7.1.2 Message structure . 50
7.1.3 Establishing a connection . 52
7.1.4 Closing a connection. 53
7.1.5 Error handling . 54
7.1.6 Error recovery . 54
7.2 SOAP/HTTP . 56
7.2.1 Overview . 56
7.2.2 XML Encoding . 56
7.2.3 OPC UA Binary Encoding . 57
7.3 HTTPS . 57
7.3.1 Overview . 57
7.3.2 XML Encoding . 59
7.3.3 OPC UA Binary Encoding . 60
7.4 Well known addresses . 60
8 Normative Contracts . 61
8.1 OPC Binary Schema . 61
8.2 XML Schema and WSDL . 61
Annex A (normative) Constants . 62
A.1 Attribute Ids . 62
A.2 Status Codes . 62
A.3 Numeric Node Ids . 62
Annex B (normative) OPC UA Nodeset . 64
Annex C (normative) Type declarations for the OPC UA native Mapping . 65
Annex D (normative) WSDL for the XML Mapping . 66
D.1 XML Schema . 66
D.2 WDSL Port Types . 66
D.3 WSDL Bindings . 66
Annex E (normative) Security settings management . 67
E.1 Overview. 67
E.2 SecuredApplication . 68
E.3 CertificateIdentifier . 71
E.4 CertificateStoreIdentifier . 73
E.5 CertificateList . 73
E.6 CertificateValidationOptions . 73
Annex F (normative) Information Model XML Schema . 75
F.1 Overview. 75
F.2 UANodeSet . 75
F.3 UANode . 76
F.4 Reference . 76
F.5 UAType . 77

– 4 – IEC 62541-6:2015 © IEC 2015
F.6 UAInstance . 77
F.7 UAVariable . 77
F.8 UAMethod . 78
F.9 TranslationType . 78
F.10 UADataType . 79
F.11 DataTypeDefinition . 79
F.12 DataTypeField . 80
F.13 Variant . 80
F.14 Example (Informative) . 81

Figure 1 – The OPC UA Stack Overview . 13
Figure 2 – Encoding Integers in a binary stream . 16
Figure 3 – Encoding Floating Points in a binary stream . 17
Figure 4 – Encoding Strings in a binary stream . 17
Figure 5 – Encoding Guids in a binary stream . 18
Figure 6 – Encoding XmlElements in a binary stream . 19
Figure 7 – A String NodeId . 20
Figure 8 – A Two Byte NodeId . 20
Figure 9 – A Four Byte NodeId . 21
Figure 10 – Security handshake . 34
Figure 11 – Relevant XML Web Services specifications . 39
Figure 12 – The WS Secure Conversation handshake . 39
Figure 13 – OPC UA Secure Conversation MessageChunk . 43
Figure 14 – OPC UA TCP Message structure . 52
Figure 15 – Establishing a OPC UA TCP connection . 53
Figure 16 – Closing a OPC UA TCP connection . 53
Figure 17 – Recovering an OPC UA TCP connection . 55
Figure 18 – Scenarios for the HTTPS Transport . 58

Table 1 – Built-in Data Types . 14
Table 2 – Guid structure . 14
Table 3 – Supported Floating Point Types . 17
Table 4 – NodeId components . 19
Table 5 – NodeId DataEncoding values . 19
Table 6 – Standard NodeId Binary DataEncoding . 19
Table 7 – Two Byte NodeId Binary DataEncoding . 20
Table 8 – Four Byte NodeId Binary DataEncoding. 20
Table 9 – ExpandedNodeId Binary DataEncoding . 21
Table 10 – DiagnosticInfo Binary DataEncoding . 22
Table 11 – QualifiedName Binary DataEncoding . 22
Table 12 – LocalizedText Binary DataEncoding . 22
Table 13 – Extension Object Binary DataEncoding. 23
Table 14 – Variant Binary DataEncoding . 24
Table 15 – Data Value Binary DataEncoding . 25

Table 16 – Sample OPC UA Binary Encoded structure . 26
Table 17 – XML Data Type Mappings for Integers . 27
Table 18 – XML Data Type Mappings for Floating Points . 27
Table 19 – Components of NodeId . 29
Table 20 – Components of ExpandedNodeId . 30
Table 21 – Components of Enumeration . 33
Table 22 – SecurityPolicy . 35
Table 23 – ApplicationInstanceCertificate . 36
Table 24 – SignedSoftwareCertificate . 37
Table 25 – Kerberos UserTokenPolicy . 38
Table 26 – WS-* Namespace prefixes . 40
Table 27 – RST/SCT Mapping to an OpenSecureChannel Request . 41
Table 28 – RSTR/SCT Mapping to an OpenSecureChannel Response . 42
Table 29 – OPC UA Secure Conversation Message header . 44
Table 30 – Asymmetric algorithm Security header . 44
Table 31 – Symmetric algorithm Security header . 45
Table 32 – Sequence header . 45
Table 33 – OPC UA Secure Conversation Message footer . 46
Table 34 – OPC UA Secure Conversation Message abort body . 47
Table 35 – OPC UA Secure Conversation OpenSecureChannel Service . 47
Table 36 – Cryptography key generation parameters . 49
Table 37 – OPC UA TCP Message header . 50
Table 38 – OPC UA TCP Hello Message . 51
Table 39 – OPC UA TCP Acknowledge Message . 51
Table 40 – OPC UA TCP Error Message . 52
Table 41 – OPC UA TCP error codes . 54
Table 42 – WS-Addressing headers . 56
Table 43 – Well known addresses for Local Discovery Servers . 60
Table A.1 – Identifiers assigned to Attributes . 62
Table E.1 – SecuredApplication . 69
Table E.2 – CertificateIdentifier . 71
Table E.3 – Structured directory store . 72
Table E.4 – CertificateStoreIdentfier . 73
Table E.5 – CertificateList . 73
Table E.6 – CertificateValidationOptions . 74
Table F.1 – UANodeSet . 75
Table F.2 – UANode . 76
Table F.3 – Reference . 77
Table F.4 – UANodeSet Type Nodes. 77
Table F.5 – UANodeSet Instance Nodes . 77
Table F.6 – UAInstance . 77
Table F.7 – UAVariable . 78
Table F.8 – UAMethod . 78

– 6 – IEC 62541-6:2015 © IEC 2015
Table F.9 – TranslationType . 79
Table F.10 – UADataType . 79
Table F.11 – DataTypeDefinition . 80
Table F.12 – DataTypeField . 80

INTERNATIONAL ELECTROTECHNICAL COMMISSION
____________
OPC UNIFIED ARCHITECTURE –
Part 6: Mappings
FOREWORD
1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization comprising
all national electrotechnical committees (IEC National Committees). The object of IEC is to promote
international co-operation on all questions concerning standardization in the electrical and electronic fields. To
this end and in addition to other activities, IEC publishes International Standards, Technical Specifications,
Technical Reports, Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC
Publication(s)”). Their preparation is entrusted to technical committees; any IEC National Committee interested
in the subject dealt with may participate in this preparatory work. International, governmental and non-
governmental organizations liaising with the IEC also participate in this preparation. IEC collaborates closely
with the International Organization for Standardization (ISO) in accordance with conditions determined by
agreement between the two organizations.
2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international
consensus of opinion on the relevant subjects since each technical committee has representation from all
interested IEC National Committees.
3) IEC Publications have the form of recommendations for international use and are accepted by IEC National
Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC
Publications is accurate, IEC cannot be held responsible for the way in which they are used or for any
misinterpretation by any end user.
4) In order to promote international uniformity, IEC National Committees undertake to apply IEC Publications
transparently to the maximum extent possible in their national and regional publications. Any divergence
between any IEC Publication and the corresponding national or regional publication shall be clearly indicated in
the latter.
5) IEC itself does not provide any attestation of conformity. Independent certification bodies provide conformity
assessment services and, in some areas, access to IEC marks of conformity. IEC is not responsible for any
services carried out by independent certification bodies.
6) All users should ensure that they have the latest edition of this publication.
7) No liability shall attach to IEC or its directors, employees, servants or agents including individual experts and
members of its technical committees and IEC National Committees for any personal injury, property damage or
other damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and
expenses arising out of the publication, use of, or reliance upon, this IEC Publication or any other IEC
Publications.
8) Attention is drawn to the Normative references cited in this publication. Use of the referenced publications is
indispensable for the correct application of this publication.
9) Attention is drawn to the possibility that some of the elements of this IEC Publication may be the subject of
patent rights. IEC shall not be held responsible for identifying any or all such patent rights.
International Standard IEC 62541-6 has been prepared by subcommittee 65E: Devices and
integration in enterprise systems, of IEC technical committee 65: Industrial-process
measurement, control and automation.
This second edition cancels and replaces the first edition published in 2011. This edition
constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous
edition:
a) Some applications need to operation in environments with no access to cryptography
libraries. To support this a new HTTPS transport has been defined in 7.3;
b) The padding byte is not long enough to handle asymmetric key sizes larger than 2048 bits.
Added an additional padding byte to 6.7.2 to handle this case.
c) Fixed errors in SOAP action URIs defined in 7.2.2;

– 8 – IEC 62541-6:2015 © IEC 2015
d) Needed a standard way to serialize nodes in an address space. Added the UANodeSet
schema defined in Annex F;
The text of this standard is based on the following documents:
CDV Report on voting
65E/377/CDV 65E/405/RVC
Full information on the voting for the approval of this standard can be found in the report on
voting indicated in the above table.
This publication has been drafted in accordance with the ISO/IEC Directives, Part 2.
A list of all parts of the IEC 62541 series, published under the general title OPC Unified
Architecture, can be found on the IEC website.
The committee has decided that the contents of this publication will remain unchanged until
the stability date indicated on the IEC web site under "http://webstore.iec.ch" in the data
related to the specific publication. At this date, the publication will be
• reconfirmed,
• withdrawn,
• replaced by a revised edition, or
• amended.
IMPORTANT – The 'colour inside' logo on the cover page of this publication indicates
that it contains colours which are considered to be useful for the correct
understanding of its contents. Users should therefore print this document using a
colour printer.
OPC UNIFIED ARCHITECTURE –
Part 6: Mappings
1 Scope
This part of IEC 62541 specifies the OPC Unified Architecture (OPC UA) mapping between
the security model described in IEC TR 62541-2, the abstract service definitions, described in
IEC 62541-4, the data structures defined in IEC 62541-5 and the physical network protocols
that can be used to implement the OPC UA specification.
2 Normative references
The following documents, in whole or in part, are normatively referenced in this document and
are indispensable for its application. For dated references, only the edition cited applies. For
undated references, the latest edition of the referenced document (including any
amendments) applies.
IEC TR 62541-1, OPC Unified Architecture – Part 1: Overview and Concepts
IEC TR 62541-2, OPC Unified Architecture – Part 2: Security Model
IEC 62541-3, OPC Unified Architecture – Part 3: Address Space Model
IEC 62541-4, OPC Unified Architecture – Part 4: Services
IEC 62541-5, OPC Unified Architecture – Part 5: Information Model
IEC 62541-7, OPC Unified Architecture – Part 7: Profiles
XML Schema Part 1: XML Schema Part 1: Structures
http://www.w3.org/TR/xmlschema-1/
XML Schema Part 2: XML Schema Part 2: Datatypes
http://www.w3.org/TR/xmlschema-2/
SOAP Part 1: SOAP Version 1.2 Part 1: Messaging Framework
http://www.w3.org/TR/soap12-part1/
SOAP Part 2: SOAP Version 1.2 Part 2: Adjuncts
http://www.w3.org/TR/soap12-part2/
XML Encryption: XML Encryption Syntax and Processing
http://www.w3.org/TR/xmlenc-core/
XML Signature: XML-Signature Syntax and Processing
http://www.w3.org/TR/xmldsig-core/
WS Security: SOAP Message Security 1.1
http://www.oasis-open.org/committees/download.php/16790/wss-v1.1-spec-os-
SOAPMessageSecurity.pdf
– 10 – IEC 62541-6:2015 © IEC 2015
WS Addressing: Web Services Addressing (WS-Addressing)
http://www.w3.org/Submission/ws-addressing/
WS Trust: WS Trust 1.3
http://docs.oasis-open.org/ws-sx/ws-trust/v1.3/ws-trust.html
WS Secure Conversation: WS Secure Conversation 1.3
http://docs.oasis-open.org/ws-sx/ws-secureconversation/v1.3/ws-secureconversation.html
WS Security Policy: WS Security Policy 1.2
http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/ws-securitypolicy-1.2-spec-
os.html
SSL/TLS: RFC 5246 – The TLS Protocol Version 1.2
http://tools.ietf.org/html/rfc5246.txt
X509: X.509 Public Key Certificate Infrastructure
http://www.itu.int/rec/T-REC-X.509-200003-I/e
WS-I Basic Profile 1.1: WS-I Basic Profile Version 1.1
http://www.ws-i.org/Profiles/BasicProfile-1.1.html
WS-I Basic Security Profile 1.1: WS-I Basic Security Profile Version 1.1
http://www.ws-i.org/Profiles/BasicSecurityProfile-1.1.html
HTTP: RFC 2616 – Hypertext Transfer Protocol – HTTP/1.1
http://www.ietf.org/rfc/rfc2616.txt
Base64: RFC 3548 – The Base16, Base32, and Base64 Data Encodings
http://www.ietf.org/rfc/rfc3548.txt
X690: ITU-T X.690 – Basic (BER), Canonical (CER) and Distinguished (DER) Encoding Rules
http://www.itu.int/ITU-T/studygroups/com17/languages/X.690-0207.pdf
IEEE-754: Standard for Binary Floating-Point Arithmetic
http://grouper.ieee.org/groups/754/
HMAC: HMAC – Keyed-Hashing for Message Authentication
http://www.ietf.org/rfc/rfc2104.txt
PKCS #1: PKCS #1 – RSA Cryptography Specifications Version 2.0
http://www.ietf.org/rfc/rfc2437.txt

FIPS 180-2: Secure Hash Standard (SHA)
http://csrc.nist.gov/publications/fips/fips180-2/fips180-2.pdf

FIPS 197: Advanced Encyption Standard (AES)
http://www.csrc.nist.gov/publications/fips/fips197/fips-197.pdf

UTF8: UTF-8, a transformation format of ISO 10646
http://tools.ietf.org/html/rfc3629
RFC 3280: RFC 3280 – X.509 Public Key Infrastructure Certificate and CRL Profile
http://www.ietf.org/rfc/rfc3280.txt
RFC 4514: RFC 4514 – LDAP: String Representation of Distinguished Names

http://www.ietf.org/rfc/rfc4514.txt
NTP: RFC 1305 – Network Time Protocol (Version 3)
http://www.ietf.org/rfc/rfc1305.txt
Kerberos: WS Security Kerberos Token Profile 1.1
http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-KerberosTokenProfile.pdf
3 Terms, definitions, abbreviations and symbols
3.1 Terms and definitions
For the purposes of this document the terms and definitions given in IEC TR 62541-1,
IEC TR 62541-2 and IEC 62541-3 as well as the following apply.
3.1.1
DataEncoding
a way to serialize OPC UA Messages and data structures
3.1.2
Mapping
specifies how to implement an OPC UA feature with a specific technology
Note 1 to entry: For example, the OPC UA Binary Encoding is a Mapping that specifies how to serialize OPC UA
data structures as sequences of bytes.
3.1.3
Security Protocol
ensures the integrity and privacy of UA Messages that are exchanged between OPC UA
applications
3.1.4
Stack Profile
a combination of DataEncodings, SecurityProtocol and TransportProtocol Mappings
Note 1 to entry: OPC UA applications implement one or more StackProfiles and can only communicate with OPC
UA applications that support a StackProfile that they support.
3.1.5
Transport Protocol
a way to exchange serialized OPC UA Messages between OPC UA applications
3.2 Abbreviations and symbols
API Application Programming Interface
ASN.1 Abstract Syntax Notation #1 (used in X690)
BP WS-I Basic Profile Version
BSP WS-I Basic Security Profile
CSV Comma Separated Value (File Format)
HTTP Hypertext Transfer Protocol
HTTPS Secure Hypertext Transfer Protocol
IPSec Internet Protocol Security
RST Request Security Token
OID Object Identifier (used with ASN.1)
RSTR Request Security Token Response

– 12 – IEC 62541-6:2015 © IEC 2015
SCT Security Context Token
SHA1 Secure Hash Algorithm
SOAP Simple Object Access Protocol
SSL Secure Sockets Layer (Defined in SSL/TLS)
TCP Transmission Control Protocol
TLS Transport Layer Security (Defined in SSL/TLS)
UTF8 Unicode Transformation Format (8-bit) (Defined in UTF8)
UA Unified Architecture
UASC OPC UA Secure Conversation
WS-* XML Web Services Specifications
WSS WS Security
WS-SC WS Secure Conversation
XML Extensible Markup Language
4 Overview
Other parts of this series of standards are written to be independent of the technology used
for implementation. This approach means OPC UA is a flexible specification that will continue
to be applicable as technology evolves. On the other hand, this approach means that it is not
possible to build an OPC UA Application with the information contained in IEC TR 62541-1
through to IEC 62541-5 because important implementation details have been left out.
This standard defines Mappings between the abstract specifications and technologies that can
be used to implement them. The Mappings are organized into three groups: DataEncodings,
SecurityProtocols and TransportProtocols. Different Mappings are combined together to
create StackProfiles. All OPC UA Applications shall implement at least one StackProfile and
can only communicate with other OPC UA Applications that implement the same StackProfile.
This standard defines the DataEncodings in Clause 5, the SecurityProtocols in Clause 6 and
the TransportProtocols in 6.7.6. The StackProfiles are defined in IEC 62541-7.
All communication between OPC UA Applications is based on the exchange of Messages. The
parameters contained in the Messages are defined in IEC 62541-4; however, their format is
specified by the DataEncoding and TransportProtocol. For this reason, each Message defined
in IEC 62541-4 shall have a normative description which specifies exactly what shall be put
on the wire. The normative descriptions are defined in the appendices.
A Stack is a collection of software libraries that implement one or more StackProfiles. The
interface between an OPC UA Application and the Stack is a non-normative API which hides
the details of the Stack implementation. An API depends on a specific DevelopmentPlatform.
Note that the datatypes exposed in the API for a DevelopmentPlatform may not match the
datatypes defined by the specification because of limitations of the DevelopmentPlatform. For
example, Java does not support an unsigned integer which means that any Java API will need
to map unsigned integers onto a signed integer type.
Figure 1 illustrates the relationships between the different concepts defined in this standard.

Client
UA Application
Server
Development Platforms
.NET 3.0
API
ANSI C
JRE 5.0
Data Encodings
Serialization Layer
UA Binary
UA XML
Encoded Message
Security Protocols
WS Secure Conversation
Stack
Secure Channel Layer
UA Secure Conversation
Security Transforms
Signing
Secured Message
Encryption
Transport Protocols
Transport Layer UA TCP
SOAP/HTTP
W SDL and XML Schema
Wire Protocol
UA Binary Schema
Mappings
IEC
Figure 1 – The OPC UA Stack Overview
The layers described in this specification do not correspond to layers in the OSI 7 layer model
[X200]. Each OPC UA StackProfile should be treated as a single Layer 7 (Application)
protocol that is built on an existing Layer 5, 6 or 7 protocol such as TCP/IP, TLS or HTTP.The
SecureChannel layer is always present even if the SecurityMode is None. In this situation, no
security is applied but the SecurityProtocol implementation shall maintain a logical channel
with a unique identifier. Users and administrators are expected to understand that a
SecureChannel with SecurityMode set to None cannot be trusted unless the Application is
operating on a physically secure network or a low level protocol such as IPSec is being used.
5 Data encoding
5.1 General
5.1.1 Overview
This standard defines two data encodings: OPC UA Binary and OPC UA XML. It describes
how to construct Messages using each of these encodings.
5.1.2 Built-in Types
All OPC UA DataEncodings are based on rules that are defined for a standard set of built-in
types. These built-in types are then u
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

Loading comments...

This May Also Interest You

IEC
IEC 62541-100:2025(Main)
OPC unified architecture - Part 100: Devices

IEC 62541-100:2025 defines the information model associated with Devices. This document describes three models which build upon each other as follows:
• The (base) Device Model is intended to provide a unified view of devices and their hardware and software parts irrespective of the underlying device protocols.
• The Device Communication Model adds Network and Connection information elements so that communication topologies can be created.
• The Device Integration Host Model finally adds additional elements and rules required for host systems to manage integration for a complete system. It enables reflecting the topology of the automation system with the devices as well as the connecting communication networks.
This document also defines AddIns that can be used for the models in this document but also for models in other information models. They are:
• Locking model – a generic AddIn to control concurrent access,
• Software update model – an AddIn to manage software in a Device.
This second edition cancels and replaces the first edition published in 2015. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
a a ComponentType that can be used to model any HW or SW element of a device has been defined and a SoftwareType has been added as subtype of ComponentType;
b the new OPC UA interface concept and defined interfaces for Nameplate, DeviceHealth, and SupportInfo has been added.
c) a new model for Software Update (Firmware Update) has been added;
d) a new entry point for documents where each document is represented by a FileType instance has been specified;
e) a model that provides information about the lifetime, related limits and semantic of the lifetime of things like tools, material or machines has been added.

  • Standard
    152 pages
    English language
    sale 15% off
  • Standard
    158 pages
    French language
    sale 15% off
  • Standard
    310 pages
    English and French language
    sale 15% off
IEC
IEC 62541-13:2025(Main)
OPC Unified Architecture - Part 13: Aggregates

IEC 62541-13:2025 is available as IEC 62541-13:2025 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition.IEC 62541-13:2025 defines the information model associated with Aggregates. Programmatically produced aggregate examples are listed in Annex A. This third edition cancels and replaces the second edition published in 2020. This edition constitutes a technical revision.
This edition includes the following technical changes with respect to the previous edition:
a) Multiple fixes for the computation of aggregates
• The Raw status bit is always set for non-bad StatusCodes for the Start and End aggregates.
• Entries in the Interpolative examples Tables A2.2 Historian1, Historian2, and Historian3 have been changed from Good to Good, Raw status codes when the timestamp matches with the timestamp of the data source.
• Missing tables have been added for DurationInStateZero and DurationInStateNonZero.
• The value of zero has been removed for results with a StatusCode of bad.
• Data Type was listed as "Status Code" when it is "Double" for both Standard Deviation and both Variance Aggregates.
• Rounding Error in TimeAverage and TimeAverage2 have been corrected.
• The status codes have been corrected for the last two intervals and the value has been corrected in the last interval.
• The wording has been changed to be more consistent with the certification testing tool.
• UsedSlopedExtrapolation set to true for Historian2 and all examples locations needed new values or status' are modified.
• Values affected by percent good and percent bad have been updated.
• PercentGood/PercentBad are now accounted for in the calculation.
• TimeAverage uses SlopedInterpolation but the Time aggregate is incorrectly allowed to used Stepped Interpolation.
• Partial bit is now correctly calculated.
• Unclear sentence was removed.
• Examples have been moved to a CSV.
• The value and status code for Historian 3 have been updated.
• TimeAverage2 Historian1 now takes uncertain regions into account when calculating StatusCodes.
• TimeAverage2 Historian2 now takes uncertain regions into account when calculating StatusCodes.
• Total2 Historian1 now takes uncertain regions into account when calculating StatusCodes
• Total2 Historian2 now takes uncertain regions into account when calculating StatusCodes
• Maximum2 Historian1 now takes uncertain regions into account when calculating StatusCodes
• MaximumActualTime2 Historian1 now takes uncertain regions into account when calculating StatusCodes
• Minimum2 Historian1 now takes uncertain regions into account when calculating StatusCodes
• MinimumActualTime2 Historian1 now has the StatusCodes calculated while using the TreatUncertainAsBad flag.
• Range2 Historian1 now looks at TreatUncertainAsBad in the calculation of the StatusCodes.
• Clarifications have been made to the text defining how PercentGood/PercentBad are used. The table values and StatusCodes of the TimeAverage2 and Total2 aggregates have been corrected.

  • Standard
    64 pages
    English language
    sale 15% off
  • Standard
    64 pages
    French language
    sale 15% off
  • Standard
    128 pages
    English and French language
    sale 15% off
IEC
IEC 62541-10:2025(Main)
OPC Unified Architecture - Part 10: Programs

IEC 62541-10:2025 is available as IEC 62541-10:2025 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition.IEC 62541-10:2025 defines the Information Model associated with Programs in OPC Unified Architecture (OPC UA). This includes the description of the NodeClasses, standard Properties, Methods and Events and associated behaviour and information for Programs. The complete AddressSpace model including all NodeClasses and Attributes is specified in IEC 62541-3. The Services such as those used to invoke the Methods used to manage Programs are specified in IEC 62541-4. An example for a DomainDownload Program is defined in Annex A. This fourth edition cancels and replaces the third edition published in 2020. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
- StateMachine table format has been aligned.

  • Standard
    42 pages
    English language
    sale 15% off
  • Standard
    45 pages
    French language
    sale 15% off
  • Standard
    87 pages
    English and French language
    sale 15% off
IEC
IEC 62541-4:2025(Main)
OPC unified architecture - Part 4: Services

IEC 62541-4:2025 is available as IEC 62541-4:2025 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition.IEC 62541-4:2025 defines the OPC Unified Architecture (OPC UA) Services. The Services defined are the collection of abstract Remote Procedure Calls (RPC) that are implemented by OPC UA Servers and called by OPC UA Clients. All interactions between OPC UA Clients and Servers occur via these Services. The defined Services are considered abstract because no particular RPC mechanism for implementation is defined in this document. IEC 62541‑6 specifies one or more concrete mappings supported for implementation. For example, one mapping in IEC 62541‑6 is to UA-TCP UA-SC UA-Binary. In that case the Services described in this document appear as OPC UA Binary encoded payload, secured with OPC UA Secure Conversation and transported via OPC UA TCP. Not all OPC UA Servers implement all of the defined Services. IEC 62541‑7 defines the Profiles that dictate which Services must be implemented in order to be compliant with a particular Profile. A BNF (Backus-Naur form) for browse path names is described in Annex A. This fourth edition cancels and replaces the third edition published in 2020. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
a) addition of new definitions to Method Call Service to allow optional Method arguments;
b)addition of reference to SystemStatusChangeEventType for event monitored item error scenarios;
c) enhancement of the general description of how determining if a Certificate is trusted;
d) addition of support for ECC;
e) addition of revisedAggregateConfiguration to AggregateFilterResult structure;
f) addition of INVALID to the BrowseDirection enumeration data type;
g) addition of INVALID to the TimestampsToReturn enumeration data type;
h) addition of definitions that make sure the subscription functionality works if retransmission queues are optional;
i) addition of client checks has been added to be symmetric to the Server Certificate check has been added;
j) clarification that ‘local’ top level domain is not appended by server into certificate and not checked by client when returned from LDS-ME;
k) addition of a definition for expiration behaviour of IssuedIdentityTokens;
l) addition of status code Good_PasswordChangeRequired to ActivateSession;
m) restriction of AdditionalInfo to servers in debug mode;
n) addition of new status code Bad_ServerTooBusy;
o) addition of definition for cases where server certificate must be contained in GetEndpoints response.

  • Standard
    245 pages
    English language
    sale 15% off
  • Standard
    257 pages
    French language
    sale 15% off
  • Standard
    502 pages
    English and French language
    sale 15% off
IEC
IEC 62541-7:2025(Main)
OPC Unified Architecture - Part 7: Profiles

IEC 62541-7: 2025 specifies value and structure of Profiles in the OPC Unified Architecture.
OPC UA Profiles are used to segregate features with regard to testing of OPC UA products and the nature of the testing. The scope of this document includes defining functionality that can only be tested. The definition of actual TestCases is not within the scope of this document, but the general categories of TestCases are covered by this document.
Most OPC UA applications will conform to several, but not all of the Profiles.
This fourth edition cancels and replaces the third edition published in 2020. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
a) Profiles and ConformanceUnits are not part of this document, but are solely managed in a public database as described in Clause 1.

  • Standard
    160 pages
    English language
    sale 15% off
  • Standard
    173 pages
    French language
    sale 15% off
  • Standard
    333 pages
    English and French language
    sale 15% off
IEC
IEC 62453-1:2025(Main)
Field device tool (FDT) interface specification - Part 1: Overview and guidance

IEC 62453-1:2025 is available as IEC 62453-1:2025 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition.IEC 62453-1:2025 presents an overview and guidance for the IEC 62453 series. It
• explains the structure and content of the IEC 62453 series (see Clause 5);
• provides explanations of some aspects of the IEC 62453 series that are common to many of the parts of the series;
• describes the relationship to some other standards;
• provides definitions of terms used in other parts of the IEC 62453 series.
This third edition cancels and replaces the first edition published in 2016. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
a) introduction of a new implementation technology (defined in IEC TS 62453-43);
b) introduction of an OPC UA information model for FDT (defined in IEC 62453-71).

  • Standard
    107 pages
    English language
    sale 15% off
IEC
IEC TS 62453-53-90:2025(Main)
Field Device Tool (FDT) Interface Specification - Part 53-90: Communication implementation for CLI and HTML – IEC 61784 CPF 9

IEC TS 62453-53-90:2025 provides information for integrating the HART®[1] technology into the CLI-based implementation of FDT interface specification (IEC TS 62453-43).
This document specifies implementation of communication and other services based on IEC 62453‑309.
This document neither contains the FDT specification nor modifies it.
[1] HART® and WirelessHART® are trade names of products supplied by FieldComm Group. This information is given for convenience of users of this document and does not constitute an endorsement by IEC of the product named. Equivalent products may be used if they can be shown to lead to the same results.

  • Technical specification
    41 pages
    English language
    sale 15% off
IEC
IEC TS 62453-53-31:2025(Main)
Field Device Tool (FDT) Interface Specification - Part 53-31: Communication implementation for CLI and HTML – IEC 61784 CP 3/1 and CP 3/2

IEC TS 62453-53-31:2025 provides information for integrating the PROFIBUS[1] technology into the CLI-based implementation of FDT interface specification (IEC TS 62453-43).
This document specifies implementation of communication and other services based on IEC 62453‑303-1.
This document neither contains the FDT specification nor modifies it.
[1] PROFIBUS™ is a trade name of the non-profit organization PROFIBUS Nutzerorganisation e.V. (PNO). This information is given for the convenience of users of this document and does not constitute an endorsement by IEC of the trade name holder or any of its products. Compliance to this document does not require use of the registered logos for PROFIBUS™. Use of the registered logos for PROFIBUS™ requires permission of PNO.

  • Technical specification
    68 pages
    English language
    sale 15% off
IEC
IEC TS 62453-43:2024(Main)
Field device tool (FDT) interface specification – Part 43: Object model integration profile – CLI and HTML

IEC TS 62453-43:2024 specifies how the common FDT principles are implemented based on the CLI technology and web technologies for graphical user interfaces. The specification includes the object behaviour and object interaction via. NET Standard interfaces and JavaScript APIs. Emphasis has been placed on support of distributed Frame Application architectures.
This document specifies FDT version 3.0.

  • Technical specification
    361 pages
    English language
    sale 15% off
IEC
IEC 62453-302:2023(Main)
Field device tool (FDT) interface specification - Part 302: Communication profile integration - IEC 61784 CPF 2

IEC 62453-302:2023 provides information for integrating the CIP™ technology into the FDT interface specification (IEC 62453‑2). Communication Profile Family 2 (commonly known as CIP™[1]) defines communication profiles based on IEC 61158-2 Type 2, IEC 61158-3-2, IEC 61158-4-2, IEC 61158-5-2, IEC 61158-6-2, and IEC 62026-3. The basic profiles CP 2/1 (ControlNet™[2]), CP 2/2 (EtherNet/IP™[3]), and CP 2/3 (DeviceNet™1) are defined in IEC 61784‑1 and IEC 61784‑2. An additional communication profile (CompoNet™1), also based on CIP™, is defined in IEC 62026-7. This part of IEC 62453 specifies communication and other services. This specification neither contains the FDT specification nor modifies it.
[1] CIP™ (Common Industrial Protocol), DeviceNet™ and CompoNet™ are trade names of Open DeviceNet Vendor Association, Inc (ODVA). This information is given for the convenience of users of this document and does not constitute an endorsement by IEC of the trade name holder or any of its products. Compliance to this standard does not require use of the trade names CIP™, DeviceNet™ or CompoNet™. Use of the trade names CIP™, DeviceNet™ or CompoNet™ requires permission of Open DeviceNet Vendor Association, Inc.
[2] ControlNet™ is a trade name of ControlNet International, Ltd. This information is given for the convenience of users of this document and does not constitute an endorsement by IEC of the trademark holder or any of its products. Compliance to this profile does not require use of the trade name ControlNet™. Use of the trade name ControlNet™ requires permission of ControlNet International, Ltd.
[3] EtherNet/IP™ is a trade name of ControlNet International, Ltd. and Open DeviceNet Vendor Association, Inc. This information is given for the convenience of users of this document and does not constitute an endorsement by IEC of the trademark holder or any of its products. Compliance to this profile does not require use of the trade name EtherNet/IP™. Use of the trade name EtherNet/IP™ requires permission of either ControlNet International, Ltd. or Open DeviceNet Vendor Association, Inc.

  • Standard
    109 pages
    English language
    sale 15% off
  • Standard
    73 pages
    English and French language
    sale 15% off