IEC 62541-7:2020
(Main)OPC Unified Architecture - Part 7: Profiles
OPC Unified Architecture - Part 7: Profiles
IEC 62541-7:2020 is available as IEC 62541-7:2020 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition. IEC 62541-7:2020 defines the OPC Unified Architecture (OPC UA) Profiles. The Profiles in this document are used to segregate features with regard to testing of OPC UA products and the nature of the testing (tool based or lab based). This includes the testing performed by the OPC Foundation provided OPC UA CTT (a self-test tool) and by the OPC Foundation provided Independent certification test labs. This could equally as well refer to test tools provided by another organization or a test lab provided by another organization. What is important is the concept of automated tool-based testing versus lab-based testing. The scope of this standard includes defining functionality that can only be tested in a lab and defining the grouping of functionality that is to be used when testing OPC UA products either in a lab or using automated tools. The definition of actual TestCases is not within the scope of this document, but the general categories of TestCases are within the scope of this document.
Most OPC UA applications will conform to several, but not all, of the Profiles.
This third edition cancels and replaces the second edition published in 2015. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
a) new functional Profiles:
• profiles for global discovery and global certificate management;
• profiles for global KeyCredential management and global access token management;
• facet for durable subscriptions;
• standard UA Client Profile;
• profiles for administration of user roles and permissions.
b) new transport Profiles:
• HTTPS with JSON encoding;
• secure WebSockets (WSS) with binary or JSON encoding;
• reverse connectivity.
c) new security Profiles:
• transportSecurity – TLS 1.2 with PFS (with perfect forward secrecy);
• securityPolicy [A] – Aes128-Sha256-RsaOaep (replaces Base128Rsa15);
• securityPolicy – Aes256-Sha256-RsaPss adds perfect forward secrecy for UA TCP);
• user Token JWT (Jason Web Token).
d) deprecated Security Profiles (due to broken algorithms):
• securityPolicy – Basic128Rsa15 (broken algorithm Sha1);
• securityPolicy – Basic256 (broken algorithm Sha1);
• transportSecurity – TLS 1.0 (broken algorithm RC4);
• transportSecurity – TLS 1.1 (broken algorithm RC4).
e) deprecated Transport (missing support on most platforms):
• SOAP/HTTP with WS-SecureConversation (all encodings).
Architecture unifiée OPC - Partie 7: Profils
IEC 62541-7:2020 est disponible sous forme de IEC 62541-7:2020 RLV qui contient la Norme internationale et sa version Redline, illustrant les modifications du contenu technique depuis l'édition précédente. L'IEC 62541-7:2020 définit les Profils de l'architecture unifiée OPC (OPC UA). Les Profils du présent document permettent de classer les caractéristiques en fonction des essais de produits OPC UA et de la nature des essais (via un outil ou en laboratoire). Cela inclut les essais effectués à l'aide de l'outil d'essai de conformité CTT OPC UA développé par la Fondation OPC (outil d'essai autonome), ainsi que les essais réalisés par des laboratoires de certification indépendants de cette même fondation. Le présent document peut également faire référence aux outils d'essai ou au laboratoire d'essai d'un autre organisme. Dans le cas présent, l'élément important est le concept qui oppose les essais fondés sur un outil automatisé et les essais en laboratoire. Le domaine d'application de la présente norme inclut la définition d'une fonctionnalité qui ne peut être soumise à l'essai qu'en laboratoire, ainsi que la définition du regroupement des fonctionnalités à utiliser durant les essais de produits OPC UA effectués en laboratoire ou à l'aide d'outils automatisés. La définition des TestCases réels ne relève pas du domaine d'application du présent document, mais les catégories de TestCases générales relèvent du domaine d'application du présent document.
La plupart des applications OPC UA sont conformes à plusieurs Profils, mais pas à l'ensemble des Profils.
Cette troisième édition annule et remplace la deuxième édition parue en 2015. Cette édition constitue une révision technique.
Cette édition inclut les modifications techniques majeures suivantes par rapport à l'édition précédente:
a) ajout de nouveaux profils fonctionnels:
• profils pour la découverte globale et la gestion globale des certificats;
• profils pour la gestion globale de KeyCredential et pour la gestion globale des jetons d'accès;
• facette pour les abonnements durables;
• profil client UA normalisé;
• profils pour l'administration des rôles et permissions des utilisateurs.
b) ajout de nouveaux profils de transport:
• HTTPS avec codage JSON;
• Secure WebSockets (WSS) avec codage binaire ou JSON;
• connectivité inversée.
c) ajout de nouveaux profils de sécurité:
• TransportSecurity – TLS 1.2 avec PFS (confidentialité persistante);
• SecurityPolicy [A] – Aes128-Sha256-RsaOaep (en remplacement de Base128Rsa15);
• SecurityPolicy – Aes256-Sha256-RsaPss ajoute la confidentialité persistante pour UA TCP);
• jeton d'utilisateur JWT (Jason Web Token).
d) spécification des profils de sécurité déconseillés (en raison des algorithmes cassés):
• SecurityPolicy – Basic128Rsa15 (algorithme Sha1 cassé);
• SecurityPolicy – Basic256 (algorithme Sha1 cassé);
• TransportSecurity – TLS 1.0 (algorithme RC4 cassé);
• TransportSecurity – TLS 1.1 (algorithme RC4 cassé).
e) transport déconseillé (absence de prise en charge sur la plupart des plateformes):
• SOAP/HTTP avec WS-SecureConversation (tous les codages).
General Information
Relations
Buy Standard
Standards Content (Sample)
IEC 62541-7 ®
Edition 3.0 2020-06
REDLINE VERSION
INTERNATIONAL
STANDARD
colour
inside
OPC unified architecture –
Part 7: Profiles
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form
or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from
either IEC or IEC's member National Committee in the country of the requester. If you have any questions about IEC
copyright or have an enquiry about obtaining additional rights to this publication, please contact the address below or
your local IEC member National Committee for further information.
IEC Central Office Tel.: +41 22 919 02 11
3, rue de Varembé info@iec.ch
CH-1211 Geneva 20 www.iec.ch
Switzerland
About the IEC
The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publishes
International Standards for all electrical, electronic and related technologies.
About IEC publications
The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the
latest edition, a corrigendum or an amendment might have been published.
IEC publications search - webstore.iec.ch/advsearchform Electropedia - www.electropedia.org
The advanced search enables to find IEC publications by a The world's leading online dictionary on electrotechnology,
variety of criteria (reference number, text, technical containing more than 22 000 terminological entries in English
committee,…). It also gives information on projects, replaced and French, with equivalent terms in 16 additional languages.
and withdrawn publications. Also known as the International Electrotechnical Vocabulary
(IEV) online.
IEC Just Published - webstore.iec.ch/justpublished
Stay up to date on all new IEC publications. Just Published IEC Glossary - std.iec.ch/glossary
details all new publications released. Available online and 67 000 electrotechnical terminology entries in English and
once a month by email. French extracted from the Terms and Definitions clause of
IEC publications issued since 2002. Some entries have been
IEC Customer Service Centre - webstore.iec.ch/csc collected from earlier publications of IEC TC 37, 77, 86 and
If you wish to give us your feedback on this publication or CISPR.
need further assistance, please contact the Customer Service
Centre: sales@iec.ch.
IEC 62541-7 ®
Edition 3.0 2020-06
REDLINE VERSION
INTERNATIONAL
STANDARD
colour
inside
OPC unified architecture –
Part 7: Profiles
INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
ICS 25.040.40; 35.100.05 ISBN 978-2-8322-8562-6
– 2 – IEC 62541-7:2020 RLV © IEC 2020
CONTENTS
FOREWORD . 12
1 Scope . 15
2 Normative references . 15
3 Terms, definitions, and conventions abbreviated terms . 16
3.1 Terms and definitions . 16
3.2 Abbreviated terms . 17
4 Overview . 17
4.1 General . 17
4.2 ConformanceUnit . 18
4.3 Profiles . 18
4.4 Profile Categories . 19
5 Conformance Units . 19
5.1 Overview. 19
5.2 Services . 20
5.3 Transport and communication related features . 30
5.4 Information Model and AddressSpace related features . 42
5.5 Miscellaneous . 62
6 Profiles . 64
6.1 Overview. 64
6.2 Profile list . 64
6.3 Conventions for Profile definitions . 71
6.4 Profile versioning . 71
6.5 Applications . 71
6.6 Profile tables . 73
6.6.1 General . 73
6.6.2 Core Server Facet . 73
6.6.3 Core 2017 Server Facet . 73
6.6.4 Sessionless Server Facet . 74
6.6.5 Reverse Connect Server Facet . 75
6.6.6 Base Server Behaviour Facet . 75
6.6.7 Request State Change Server Facet . 75
6.6.8 Subnet Discovery Server Facet . 75
6.6.9 Global Certificate Management Server Facet . 76
6.6.10 Authorization Service Server Facet . 76
6.6.11 KeyCredential Service Server Facet . 76
6.6.12 Attribute WriteMask Server Facet . 76
6.6.13 File Access Server Facet . 77
6.6.14 Documentation Server Facet . 77
6.6.15 Embedded DataChange Subscription Server Facet . 77
6.6.16 Standard DataChange Subscription Server Facet . 78
6.6.17 Standard DataChange Subscription 2017 Server Facet . 78
6.6.18 Enhanced DataChange Subscription Server Facet . 78
6.6.19 Enhanced DataChange Subscription 2017 Server Facet . 78
6.6.20 Durable Subscription Server Facet . 79
6.6.21 Data Access Server Facet . 79
6.6.22 ComplexType Server Facet . 79
6.6.23 ComplexType 2017 Server Facet . 80
6.6.24 Standard Event Subscription Server Facet . 80
6.6.25 Address Space Notifier Server Facet . 81
6.6.26 A & C Base Condition Server Facet . 81
6.6.27 A & C Refresh2 Server Facet . 82
6.6.28 A & C Address Space Instance Server Facet . 82
6.6.29 A & C Enable Server Facet . 82
6.6.30 A & C AlarmMetrics Server Facet . 82
6.6.31 A & C Alarm Server Facet . 83
6.6.32 A & C Acknowledgeable Alarm Server Facet . 83
6.6.33 A & C Exclusive Alarming Server Facet . 84
6.6.34 A & C Non-Exclusive Alarming Server Facet . 84
6.6.35 A & C Previous Instances Server Facet . 84
6.6.36 A & C Dialog Server Facet . 85
6.6.37 A & C CertificateExpiration Server Facet . 85
6.6.38 A & E Wrapper Facet . 85
6.6.39 Method Server Facet . 86
6.6.40 Auditing Server Facet . 86
6.6.41 Node Management Server Facet. 87
6.6.42 User Role Base Server Facet . 87
6.6.43 User Role Management Server Facet . 87
6.6.44 State Machine Server Facet . 88
6.6.45 Client Redundancy Server Facet . 88
6.6.46 Redundancy Transparent Server Facet . 88
6.6.47 Redundancy Visible Server Facet . 89
6.6.48 Historical Raw Data Server Facet . 89
6.6.49 Historical Aggregate Server Facet . 89
6.6.50 Historical Data AtTime Server Facet . 90
6.6.51 Historical Access Modified Data Server Facet . 91
6.6.52 Historical Annotation Server Facet . 91
6.6.53 Historical Data Insert Server Facet . 91
6.6.54 Historical Data Update Server Facet . 91
6.6.55 Historical Data Replace Server Facet . 92
6.6.56 Historical Data Delete Server Facet . 92
6.6.57 Historical Access Structured Data Server Facet . 92
6.6.58 Base Historical Event Server Facet . 92
6.6.59 Historical Event Update Server Facet . 93
6.6.60 Historical Event Replace Server Facet . 93
6.6.61 Historical Event Insert Server Facet . 93
6.6.62 Historical Event Delete Server Facet . 93
6.6.63 Aggregate Subscription Server Facet . 94
6.6.64 Nano Embedded Device Server Profile . 95
6.6.65 Nano Embedded Device 2017 Server Profile . 95
6.6.66 Micro Embedded Device Server Profile . 95
6.6.67 Micro Embedded Device 2017 Server Profile . 95
6.6.68 Embedded UA Server Profile . 95
6.6.69 Embedded 2017 UA Server Profile . 96
6.6.70 Standard UA Server Profile . 96
6.6.71 Standard 2017 UA Server Profile . 96
– 4 – IEC 62541-7:2020 RLV © IEC 2020
6.6.72 Core Client Facet. 97
6.6.73 Core 2017 Client Facet . 97
6.6.74 Sessionless Client Facet . 98
6.6.75 Reverse Connect Client Facet . 98
6.6.76 Base Client Behaviour Facet . 98
6.6.77 Discovery Client Facet .
...
IEC 62541-7 ®
Edition 3.0 2020-06
INTERNATIONAL
STANDARD
NORME
INTERNATIONALE
colour
inside
OPC unified architecture –
Part 7: Profiles
Architecture unifiée OPC –
Partie 7: Profils
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form
or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from
either IEC or IEC's member National Committee in the country of the requester. If you have any questions about IEC
copyright or have an enquiry about obtaining additional rights to this publication, please contact the address below or
your local IEC member National Committee for further information.
Droits de reproduction réservés. Sauf indication contraire, aucune partie de cette publication ne peut être reproduite
ni utilisée sous quelque forme que ce soit et par aucun procédé, électronique ou mécanique, y compris la photocopie
et les microfilms, sans l'accord écrit de l'IEC ou du Comité national de l'IEC du pays du demandeur. Si vous avez des
questions sur le copyright de l'IEC ou si vous désirez obtenir des droits supplémentaires sur cette publication, utilisez
les coordonnées ci-après ou contactez le Comité national de l'IEC de votre pays de résidence.
IEC Central Office Tel.: +41 22 919 02 11
3, rue de Varembé info@iec.ch
CH-1211 Geneva 20 www.iec.ch
Switzerland
About the IEC
The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publishes
International Standards for all electrical, electronic and related technologies.
About IEC publications
The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the
latest edition, a corrigendum or an amendment might have been published.
IEC publications search - webstore.iec.ch/advsearchform Electropedia - www.electropedia.org
The advanced search enables to find IEC publications by a The world's leading online dictionary on electrotechnology,
variety of criteria (reference number, text, technical containing more than 22 000 terminological entries in English
committee,…). It also gives information on projects, replaced and French, with equivalent terms in 16 additional languages.
and withdrawn publications. Also known as the International Electrotechnical Vocabulary
(IEV) online.
IEC Just Published - webstore.iec.ch/justpublished
Stay up to date on all new IEC publications. Just Published IEC Glossary - std.iec.ch/glossary
details all new publications released. Available online and 67 000 electrotechnical terminology entries in English and
once a month by email. French extracted from the Terms and Definitions clause of
IEC publications issued since 2002. Some entries have been
IEC Customer Service Centre - webstore.iec.ch/csc collected from earlier publications of IEC TC 37, 77, 86 and
If you wish to give us your feedback on this publication or CISPR.
need further assistance, please contact the Customer Service
Centre: sales@iec.ch.
A propos de l'IEC
La Commission Electrotechnique Internationale (IEC) est la première organisation mondiale qui élabore et publie des
Normes internationales pour tout ce qui a trait à l'électricité, à l'électronique et aux technologies apparentées.
A propos des publications IEC
Le contenu technique des publications IEC est constamment revu. Veuillez vous assurer que vous possédez l’édition la
plus récente, un corrigendum ou amendement peut avoir été publié.
Recherche de publications IEC - Electropedia - www.electropedia.org
webstore.iec.ch/advsearchform Le premier dictionnaire d'électrotechnologie en ligne au
La recherche avancée permet de trouver des publications IEC monde, avec plus de 22 000 articles terminologiques en
en utilisant différents critères (numéro de référence, texte, anglais et en français, ainsi que les termes équivalents dans
comité d’études,…). Elle donne aussi des informations sur les 16 langues additionnelles. Egalement appelé Vocabulaire
projets et les publications remplacées ou retirées. Electrotechnique International (IEV) en ligne.
IEC Just Published - webstore.iec.ch/justpublished Glossaire IEC - std.iec.ch/glossary
Restez informé sur les nouvelles publications IEC. Just 67 000 entrées terminologiques électrotechniques, en anglais
Published détaille les nouvelles publications parues. et en français, extraites des articles Termes et Définitions des
Disponible en ligne et une fois par mois par email. publications IEC parues depuis 2002. Plus certaines entrées
antérieures extraites des publications des CE 37, 77, 86 et
Service Clients - webstore.iec.ch/csc CISPR de l'IEC.
Si vous désirez nous donner des commentaires sur cette
publication ou si vous avez des questions contactez-nous:
sales@iec.ch.
IEC 62541-7 ®
Edition 3.0 2020-06
INTERNATIONAL
STANDARD
NORME
INTERNATIONALE
colour
inside
OPC unified architecture –
Part 7: Profiles
Architecture unifiée OPC –
Partie 7: Profils
INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
COMMISSION
ELECTROTECHNIQUE
INTERNATIONALE
ICS 25.040.40; 35.100.05 ISBN 978-2-8322-8456-8
– 2 – IEC 62541-7:2020 © IEC 2020
CONTENTS
FOREWORD . 12
1 Scope . 15
2 Normative references . 15
3 Terms, definitions, and abbreviated terms . 16
3.1 Terms and definitions . 16
3.2 Abbreviated terms . 17
4 Overview . 17
4.1 General . 17
4.2 ConformanceUnit . 18
4.3 Profiles . 18
4.4 Profile Categories . 19
5 Conformance Units . 19
5.1 Overview. 19
5.2 Services . 20
5.3 Transport and communication related features . 30
5.4 Information Model and AddressSpace related features . 38
5.5 Miscellaneous . 55
6 Profiles . 57
6.1 Overview. 57
6.2 Profile list . 57
6.3 Conventions for Profile definitions . 64
6.4 Profile versioning . 64
6.5 Applications . 64
6.6 Profile tables . 66
6.6.1 General . 66
6.6.2 Core Server Facet . 66
6.6.3 Core 2017 Server Facet . 66
6.6.4 Sessionless Server Facet . 67
6.6.5 Reverse Connect Server Facet . 67
6.6.6 Base Server Behaviour Facet . 68
6.6.7 Request State Change Server Facet . 68
6.6.8 Subnet Discovery Server Facet . 68
6.6.9 Global Certificate Management Server Facet . 68
6.6.10 Authorization Service Server Facet . 69
6.6.11 KeyCredential Service Server Facet . 69
6.6.12 Attribute WriteMask Server Facet . 69
6.6.13 File Access Server Facet . 69
6.6.14 Documentation Server Facet . 70
6.6.15 Embedded DataChange Subscription Server Facet . 70
6.6.16 Standard DataChange Subscription Server Facet . 70
6.6.17 Standard DataChange Subscription 2017 Server Facet . 71
6.6.18 Enhanced DataChange Subscription Server Facet . 71
6.6.19 Enhanced DataChange Subscription 2017 Server Facet . 71
6.6.20 Durable Subscription Server Facet . 71
6.6.21 Data Access Server Facet . 72
6.6.22 ComplexType Server Facet . 72
6.6.23 ComplexType 2017 Server Facet . 72
6.6.24 Standard Event Subscription Server Facet . 73
6.6.25 Address Space Notifier Server Facet . 74
6.6.26 A & C Base Condition Server Facet . 74
6.6.27 A & C Refresh2 Server Facet . 74
6.6.28 A & C Address Space Instance Server Facet . 74
6.6.29 A & C Enable Server Facet . 75
6.6.30 A & C AlarmMetrics Server Facet . 75
6.6.31 A & C Alarm Server Facet . 75
6.6.32 A & C Acknowledgeable Alarm Server Facet . 76
6.6.33 A & C Exclusive Alarming Server Facet . 76
6.6.34 A & C Non-Exclusive Alarming Server Facet . 77
6.6.35 A & C Previous Instances Server Facet . 77
6.6.36 A & C Dialog Server Facet . 77
6.6.37 A & C CertificateExpiration Server Facet . 78
6.6.38 A & E Wrapper Facet . 78
6.6.39 Method Server Facet . 79
6.6.40 Auditing Server Facet . 79
6.6.41 Node Management Server Facet. 80
6.6.42 User Role Base Server Facet . 80
6.6.43 User Role Management Server Facet . 80
6.6.44 State Machine Server Facet . 81
6.6.45 Client Redundancy Server Facet . 81
6.6.46 Redundancy Transparent Server Facet . 81
6.6.47 Redundancy Visible Server Facet . 82
6.6.48 Historical Raw Data Server Facet . 82
6.6.49 Historical Aggregate Server Facet . 82
6.6.50 Historical Data AtTime Server Facet . 83
6.6.51 Historical Access Modified Data Server Facet . 84
6.6.52 Historical Annotation Server Facet . 84
6.6.53 Historical Data Insert Server Facet . 84
6.6.54 Historical Data U
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.