OPC Security

Use OSG to transform your OPC architectures from a security liability to an effective part of your defense-in-depth strategy
Datasheet

Secure Data Connectivity Solutions

Matrikon OPC Security Gateway secures 3rd party, real-time and historical OPC Classic architectures. Unlike regular OPC solutions, which provide coarse DCOM-based security, OSG offers granular control over who can browse, add, read, and write to each OPC item on a per-user and per-item basis on any OPC server.
OSG is based on the OPC Foundation's OPC Security specification for maximum interoperability, making it an open
standards-based solution. Use OSG to transform your OPC architectures from a security liability to an effective part of
your defense-in-depth strategy.

Use Matrikon security enabled products to enforce security in challenging real-world environments where third-party legacy systems with little to no data security need to be integrated with modern components without compromising security nor reliability. Built and thoroughly tested for secure operation, Matrikon OPC applications let you confidently extend the life of your legacy systems as you modernize your infrastructure to make it future-ready

 

OSG provides robust OPC DA server security integrated into a single application. OSG compliments the Windows DCOMbased security, allowing administrators to lock down direct access to OPC servers. In this configuration, only OSG and
clients connected to it can access the servers. Optional OPC HDA support is also available.

 

Ensure robust security across your data communications with Matrikon’s security-enabled products

Safeguard your enterprise from legacy system vulnerabilities while seamlessly integrating with modern IoT/I4.0 solutions. With advanced encryption and granular user controls, Matrikon OPC applications provide reliable, secure connectivity. Upgrade your infrastructure today and extend the life of your systems with confidence!
Contact Us

Beyond data encryption, Matrikon security solutions give you the granularity you need to control exactly what items each user can access and what they can do with each of those items (ex. Browse, read, and/or write)

OSG highlights

Universal compatibility with all OPC DA compliant clients and servers
Multi OPC DA Server aggregation (federation)
Selective OPC Server visibility to authorized users only
Granular control over browse, read, and write operations
OPC UA Tunneller ready – works directly with Matrikon OPC
UA Tunneller client connections
Role-based security
Supports OPC DA Clients that do not support the OPC Foundation's OPC Security specification
Non-disruptive setup enables existing systems to be secured without going offline
Ties into existing Windows security
OPC Foundation Security Specification compliance

Benefits

 OPC HDA Support Option 
 OPC Alias Events Option 
 Native Matrikon OPC UA Tunneller Support 

OPC Specs

OPC Data Access Specification 2.05a
OPC Data Access Specification 3.00
OPC Historical Data Access Specification 1.2
OPC Alarms and Events Specification 1.10
OPC Security Specification 1.00

Use Cases

Per-user assignment of custom access rights to data from specific OPC servers.
Granular control over actions each authorized user can take on a per OPC server and per-item basis.
Controlled activities include item browsing, reading, and writing.
Data source protection from potentially crippling loads generated by OPC client requests.
Prevention of user-generated device writes to control systems
OPC Client bulk item requests.
Prevention of production data reads by unauthorized personnel. This is especially relevant in shared resource environments where contractors or partners should only access their portion of the overall address space.
Securing OPC Servers that do not implement the OPC Security specification.
Implementation of role-based security