Professional OPC
Development Tools

logos

Online Forums

Technical support is provided through Support Forums below. Anybody can view them; you need to Register/Login to our site (see links in upper right corner) in order to Post questions. You do not have to be a licensed user of our product.

Please read Rules for forum posts before reporting your issue or asking a question. OPC Labs team is actively monitoring the forums, and replies as soon as possible. Various technical information can also be found in our Knowledge Base. For your convenience, we have also assembled a Frequently Asked Questions page.

Do not use the Contact page for technical issues.

AES Security policy

More
02 Apr 2021 06:43 #9583 by support
Replied by support on topic AES Security policy
Hello,

you are right, security policies Aes128_Sha256_RsaOaep and Aes256_Sha256_RsaPss are, as of now (with QuickOPC 2021.1), only supported under .NET Core and .NET 5, and not under .NET Framework (4.7-4.8). The QuickOPC COM layer (which include unmanaged C++ support) is implemented on top of the .NET Framework, and therefore these security policies are not available through QuickOPC COM.

The reason for this is that QuickOPC relies on the low-level OPC UA stack code from OPC Foundation. And the stack code for .NET Framework is marked "legacy" and no longer actively maintained.

It is unlikely that AES security policies will ever be added to the legacy .NET Stack, and therefore, it is unlikely that they will ever be available in QuickOPC for .NET Framework or QuickOPC COM.

The way forward will probably be to provide QuickOPC COM on top of .NET Core/.NET 5+. We cannot do it currently (at least not directly), because although Microsoft claims to support creation of COM Servers in .NET Core /.NET 5+, they have not done it in full. Specifically, generation of COM type libraries from the .NET assemblies is missing. We need to wait whether they will add it in reasonable time. I can foresee 3 possible outcomes:

a) Microsoft will provide a full support for development of COM Server objects under .NET 5+ in reasonable time [* see below]. If/when this happens, we will use it, and at that time we will provide QuickOPC COM that would work over .NET 5+, and will thus use the newer OPC UA stack and will have the AES security policies.

b) If Microsoft does not provide that in time, we will try to make it work anyway somehow - which is much more work, and it may fail, If successful, that is what we will provide.

c) If b) also fails, there will not be a newer version of what you asking for, and the new policies will not be implemented.

[*] The "reasonable time" is unknown. But it is quite long. We do not see a significant pressure from the user base. I would say 1 year at least.

Best regards

Please Log in or Create an account to join the conversation.

More
31 Mar 2021 09:20 #9582 by federica
AES Security policy was created by federica
Hi,
I'm using QuickOPC COM, developing in C++.
Reading the documentation I found that AES security policies are not supported in COM version of QuickOPC (opclabs.doc-that.com/files/onlinedocs/QuickOpc/Latest/User%2...0UA%20Security%20Policies.html).
Will the support be introduced with the next releases of the library?
Thank you
Best regards, Federica

Please Log in or Create an account to join the conversation.

Moderators: support
Time to create page: 0.052 seconds