EN IEC 62541-7:2020
(Main)OPC unified architecture - Part 7: Profiles
OPC unified architecture - Part 7: Profiles
IEC 62541-7:2020 is available as IEC 62541-7:2020 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition.IEC 62541-7:2020 defines the OPC Unified Architecture (OPC UA) Profiles. The Profiles in this document are used to segregate features with regard to testing of OPC UA products and the nature of the testing (tool based or lab based). This includes the testing performed by the OPC Foundation provided OPC UA CTT (a self-test tool) and by the OPC Foundation provided Independent certification test labs. This could equally as well refer to test tools provided by another organization or a test lab provided by another organization. What is important is the concept of automated tool-based testing versus lab-based testing. The scope of this standard includes defining functionality that can only be tested in a lab and defining the grouping of functionality that is to be used when testing OPC UA products either in a lab or using automated tools. The definition of actual TestCases is not within the scope of this document, but the general categories of TestCases are within the scope of this document. Most OPC UA applications will conform to several, but not all, of the Profiles. This third edition cancels and replaces the second edition published in 2015. This edition constitutes a technical revision. This edition includes the following significant technical changes with respect to the previous edition: a) new functional Profiles: • profiles for global discovery and global certificate management; • profiles for global KeyCredential management and global access token management; • facet for durable subscriptions; • standard UA Client Profile; • profiles for administration of user roles and permissions. b) new transport Profiles: • HTTPS with JSON encoding; • secure WebSockets (WSS) with binary or JSON encoding; • reverse connectivity. c) new security Profiles: • transportSecurity – TLS 1.2 with PFS (with perfect forward secrecy); • securityPolicy [A] – Aes128-Sha256-RsaOaep (replaces Base128Rsa15); • securityPolicy – Aes256-Sha256-RsaPss adds perfect forward secrecy for UA TCP); • user Token JWT (Jason Web Token). d) deprecated Security Profiles (due to broken algorithms): • securityPolicy – Basic128Rsa15 (broken algorithm Sha1); • securityPolicy – Basic256 (broken algorithm Sha1); • transportSecurity – TLS 1.0 (broken algorithm RC4); • transportSecurity – TLS 1.1 (broken algorithm RC4). e) deprecated Transport (missing support on most platforms): • SOAP/HTTP with WS-SecureConversation (all encodings).
OPC Unified Architecture - Teil 7: Profile
Architecture unifiée OPC - Partie 7: Profils
IEC 62541-7:2020 est disponible sous forme de IEC 62541-7:2020 RLV qui contient la Norme internationale et sa version Redline, illustrant les modifications du contenu technique depuis l'édition précédente.L'IEC 62541-7:2020 définit les Profils de l'architecture unifiée OPC (OPC UA). Les Profils du présent document permettent de classer les caractéristiques en fonction des essais de produits OPC UA et de la nature des essais (via un outil ou en laboratoire). Cela inclut les essais effectués à l'aide de l'outil d'essai de conformité CTT OPC UA développé par la Fondation OPC (outil d'essai autonome), ainsi que les essais réalisés par des laboratoires de certification indépendants de cette même fondation. Le présent document peut également faire référence aux outils d'essai ou au laboratoire d'essai d'un autre organisme. Dans le cas présent, l'élément important est le concept qui oppose les essais fondés sur un outil automatisé et les essais en laboratoire. Le domaine d'application de la présente norme inclut la définition d'une fonctionnalité qui ne peut être soumise à l'essai qu'en laboratoire, ainsi que la définition du regroupement des fonctionnalités à utiliser durant les essais de produits OPC UA effectués en laboratoire ou à l'aide d'outils automatisés. La définition des TestCases réels ne relève pas du domaine d'application du présent document, mais les catégories de TestCases générales relèvent du domaine d'application du présent document. La plupart des applications OPC UA sont conformes à plusieurs Profils, mais pas à l'ensemble des Profils. Cette troisième édition annule et remplace la deuxième édition parue en 2015. Cette édition constitue une révision technique. Cette édition inclut les modifications techniques majeures suivantes par rapport à l'édition précédente: a) ajout de nouveaux profils fonctionnels: • profils pour la découverte globale et la gestion globale des certificats; • profils pour la gestion globale de KeyCredential et pour la gestion globale des jetons d'accès; • facette pour les abonnements durables; • profil client UA normalisé; • profils pour l'administration des rôles et permissions des utilisateurs. b) ajout de nouveaux profils de transport: • HTTPS avec codage JSON; • Secure WebSockets (WSS) avec codage binaire ou JSON; • connectivité inversée. c) ajout de nouveaux profils de sécurité: • TransportSecurity – TLS 1.2 avec PFS (confidentialité persistante); • SecurityPolicy [A] – Aes128-Sha256-RsaOaep (en remplacement de Base128Rsa15); • SecurityPolicy – Aes256-Sha256-RsaPss ajoute la confidentialité persistante pour UA TCP); • jeton d'utilisateur JWT (Jason Web Token). d) spécification des profils de sécurité déconseillés (en raison des algorithmes cassés): • SecurityPolicy – Basic128Rsa15 (algorithme Sha1 cassé); • SecurityPolicy – Basic256 (algorithme Sha1 cassé); • TransportSecurity – TLS 1.0 (algorithme RC4 cassé); • TransportSecurity – TLS 1.1 (algorithme RC4 cassé). e) transport déconseillé (absence de prise en charge sur la plupart des plateformes): • SOAP/HTTP avec WS-SecureConversation (tous les codages).
Enotna arhitektura OPC - 7. del: Profili (IEC 62541-7:2020)
General Information
Relations
Standards Content (Sample)
SLOVENSKI STANDARD
01-december-2020
Nadomešča:
SIST EN 62541-7:2015
Enotna arhitektura OPC - 7. del: Profili (IEC 62541-7:2020)
OPC unified architecture - Part 7: Profiles (IEC 62541-7:2020)
OPC Unified Architecture - Teil 7: Profile (IEC 62541-7:2020)
Architecture unifiée OPC - Partie 7: Profils (IEC 62541-7:2020)
Ta slovenski standard je istoveten z: EN IEC 62541-7:2020
ICS:
25.040.40 Merjenje in krmiljenje Industrial process
industrijskih postopkov measurement and control
35.240.50 Uporabniške rešitve IT v IT applications in industry
industriji
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.
EUROPEAN STANDARD EN IEC 62541-7
NORME EUROPÉENNE
EUROPÄISCHE NORM
August 2020
ICS 35.100.05; 25.040.40 Supersedes EN 62541-7:2015 and all of its amendments
and corrigenda (if any)
English Version
OPC unified architecture - Part 7: Profiles
(IEC 62541-7:2020)
Architecture unifiée OPC - Partie 7: Profils OPC Unified Architecture - Teil 7: Profile
(IEC 62541-7:2020) (IEC 62541-7:2020)
This European Standard was approved by CENELEC on 2020-07-27. CENELEC members are bound to comply with the CEN/CENELEC
Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.
Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC
Management Centre or to any CENELEC member.
This European Standard exists in three official versions (English, French, German). A version in any other language made by translation
under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the
same status as the official versions.
CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,
Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the
Netherlands, Norway, Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and the United Kingdom.
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2020 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.
Ref. No. EN IEC 62541-7:2020 E
European foreword
The text of document 65E/707/FDIS, future edition 3 of IEC 62541-7, prepared by SC 65E "Devices
and integration in enterprise systems" of IEC/TC 65 "Industrial-process measurement, control and
automation" was submitted to the IEC-CENELEC parallel vote and approved by CENELEC as
The following dates are fixed:
• latest date by which the document has to be implemented at national (dop) 2021-04-27
level by publication of an identical national standard or by endorsement
• latest date by which the national standards conflicting with the (dow) 2023-07-27
document have to be withdrawn
This document supersedes EN 62541-7:2015 and all of its amendments and corrigenda (if any).
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CENELEC shall not be held responsible for identifying any or all such patent rights.
This document has been prepared under a mandate given to CENELEC by the European Commission
and the European Free Trade Association.
Endorsement notice
The text of the International Standard IEC 62541-7:2020 was approved by CENELEC as a European
Standard without any modification.
Annex ZA
(normative)
Normative references to international publications
with their corresponding European publications
The following documents are referred to in the text in such a way that some or all of their content
constitutes requirements of this document. For dated references, only the edition cited applies. For
undated references, the latest edition of the referenced document (including any amendments)
applies.
NOTE 1 Where an International Publication has been modified by common modifications, indicated by (mod), the relevant
EN/HD applies.
NOTE 2 Up-to-date information on the latest versions of the European Standards listed in this annex is available here:
www.cenelec.eu.
Publication Year Title EN/HD Year
IEC/TR 62541-1 - OPC unified architecture - Part 1: CLC/TR 62541-1 -
Overview and concepts
IEC/TR 62541-2 - OPC unified architecture - Part 2: CLC/TR 62541-2 -
Security model
IEC 62541-3 - OPC Unified Architecture - Part 3: - -
Address Space Model
IEC 62541-4 - OPC Unified Architecture - Part 4: - -
Services
IEC 62541-5 - OPC Unified Architecture - Part 5: - -
Information Model
IEC 62541-6 - OPC Unified Architecture - Part 6: - -
Mappings
IEC 62541-8 - OPC Unified Architecture - Part 8: Data - -
Access
IEC 62541-9 - OPC Unified Architecture - Part 9: - -
Alarms and Conditions
IEC 62541-11 - OPC Unified Architecture - Part 11: - -
Historical Access
IEC 62541-12 - OPC unified architecture - Part 12: - -
Discovery and global services
IEC 62541-13 - OPC Unified Architecture - Part 13: - -
Aggregates
Compliance Part 8 - OPC Test Lab Specification: Part 8 - UA - -
UA Server Server
Compliance Part 9 - OPC Test Lab Specification: Part 9 - UA - -
UA Client Client
IEC 62541-7 ®
Edition 3.0 2020-06
INTERNATIONAL
STANDARD
NORME
INTERNATIONALE
colour
inside
OPC unified architecture –
Part 7: Profiles
Architecture unifiée OPC –
Partie 7: Profils
INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
COMMISSION
ELECTROTECHNIQUE
INTERNATIONALE
ICS 25.040.40; 35.100.05 ISBN 978-2-8322-8456-8
– 2 – IEC 62541-7:2020 © IEC 2020
CONTENTS
FOREWORD . 12
1 Scope . 15
2 Normative references . 15
3 Terms, definitions, and abbreviated terms . 16
3.1 Terms and definitions . 16
3.2 Abbreviated terms . 17
4 Overview . 17
4.1 General . 17
4.2 ConformanceUnit . 18
4.3 Profiles . 18
4.4 Profile Categories . 19
5 Conformance Units . 19
5.1 Overview. 19
5.2 Services . 20
5.3 Transport and communication related features . 30
5.4 Information Model and AddressSpace related features . 38
5.5 Miscellaneous . 55
6 Profiles . 57
6.1 Overview. 57
6.2 Profile list . 57
6.3 Conventions for Profile definitions . 64
6.4 Profile versioning . 64
6.5 Applications . 64
6.6 Profile tables . 66
6.6.1 General . 66
6.6.2 Core Server Facet . 66
6.6.3 Core 2017 Server Facet . 66
6.6.4 Sessionless Server Facet . 67
6.6.5 Reverse Connect Server Facet . 67
6.6.6 Base Server Behaviour Facet . 68
6.6.7 Request State Change Server Facet . 68
6.6.8 Subnet Discovery Server Facet . 68
6.6.9 Global Certificate Management Server Facet . 68
6.6.10 Authorization Service Server Facet . 69
6.6.11 KeyCredential Service Server Facet . 69
6.6.12 Attribute WriteMask Server Facet . 69
6.6.13 File Access Server Facet . 69
6.6.14 Documentation Server Facet . 70
6.6.15 Embedded DataChange Subscription Server Facet . 70
6.6.16 Standard DataChange Subscription Server Facet . 70
6.6.17 Standard DataChange Subscription 2017 Server Facet . 71
6.6.18 Enhanced DataChange Subscription Server Facet . 71
6.6.19 Enhanced DataChange Subscription 2017 Server Facet . 71
6.6.20 Durable Subscription Server Facet . 71
6.6.21 Data Access Server Facet . 72
6.6.22 ComplexType Server Facet . 72
IEC 62541-7:2020 © IEC 2020 – 3 –
6.6.23 ComplexType 2017 Server Facet . 72
6.6.24 Standard Event Subscription Server Facet . 73
6.6.25 Address Space Notifier Server Facet . 74
6.6.26 A & C Base Condition Server Facet . 74
6.6.27 A & C Refresh2 Server Facet . 74
6.6.28 A & C Address Space Instance Server Facet . 74
6.6.29 A & C Enable Server Facet . 75
6.6.30 A & C AlarmMetrics Server Facet . 75
6.6.31 A & C Alarm Server Facet . 75
6.6.32 A & C Acknowledgeable Alarm Server Facet . 76
6.6.33 A & C Exclusive Alarming Server Facet . 76
6.6.34 A & C Non-Exclusive Alarming Server Facet . 77
6.6.35 A & C Previous Instances Server Facet . 77
6.6.36 A & C Dialog Server Facet . 77
6.6.37 A & C CertificateExpiration Server Facet . 78
6.6.38 A & E Wrapper Facet . 78
6.6.39 Method Server Facet . 79
6.6.40 Auditing Server Facet . 79
6.6.41 Node Management Server Facet. 80
6.6.42 User Role Base Server Facet . 80
6.6.43 User Role Management Server Facet .
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.