Log In
Home
11/22/2018
Offline
Hi,
I have a question to AddCertificate method of TrustListType which is defined in "OPC UA Part 12, V1.04, Section 7.5.2": what should be the appropriate response to requesting to add to a trust list a certificate which is already existing in the trust list?
In my opinion this should be accepted by the server without having to update the trust list. Is it correct?
Thanks a lot in advance!
05/30/2017
Offline
You should re-validate the certificate as required by the method. Not sure what benefit you get by not updating the trust list at that point.
11/22/2018
Offline
yes, I totally agree that the certificate to add must be first evaluated. And based on your answer I assume that the certificate shall be accepted, is it correct?
Whether update of a trust list is necessary is also an important factor in our OPC UA server as it is running on embedded system. By not updating trust list unless required we expect to increase life time of deployed flash memory.
05/30/2017
Offline
You can optimize actions such as writing to flash because the client cannot know and does not care.
If you support audit events you should raise the audit events on the update even if no actual changed occurred.
1 Guest(s)
Usage Policy