ClassID: 1.3.2

extends OcaManager

Manager that collects and controls security settings (including security keys).

Must be instantiated in every device that supports secure control and monitoring; otherwise, is optional.
May be instantiated at most once in any device.
If instantiated, object number must be 2.

Properties

static readonly OcaClassID ClassID = 1.3.2

Level: 1 Index: 1

Number that uniquely identifies the class. Note that this differs from the object number, which identifies the instantiated object. This property is an override of the OcaRoot property.

static readonly OcaClassVersionNumber ClassVersion = 2

Level: 1 Index: 2

Identifies the interface version of the class. Any change to the class definition leads to a higher class version. This property is an override of the OcaRoot property.

OcaBoolean secureControlData

Level: 3 Index: 1

Indicates whether the OCA control data in the system is secured.

Properties inherited from OcaRoot

readonly OcaONo ObjectNumber

readonly OcaBoolean Lockable

readonly OcaString Role

Methods

OcaSecurityManager::AddPreSharedKey ( OcaString identity, OcaBlob key )

Level: 3 Index: 4

Adds a pre-shared key (identified by the passed identity) to the device. By having multiple PSKs the device is able to participate in multiple secure systems. Note that adding a PSK over the network will only work if the controller has a secure connection to the device and control security has been turned on. If this is not the case the method will return DeviceError.

OcaSecurityManager::ChangePreSharedKey ( OcaString identity, OcaBlob newKey )

Level: 3 Index: 3

Changes the pre-shared key identified by the passed identity. Note that changing a PSK over the network will only work if the controller has a secure connection to the device and control security has been turned on. If this is not the case the method will return DeviceError.

OcaSecurityManager::DeletePreSharedKey ( OcaString identity )

Level: 3 Index: 5

Deletes a pre-shared key (identified by the passed identity) on the device. After deleting the pre-shared key the device will no longer be able to participate in the secure system that uses the PSK. Note that deleting a PSK over the network will only work if the controller has a secure connection to the device and control security has been turned on. If this is not the case the method will return DeviceError.

OcaSecurityManager::DisableControlSecurity ( )

Level: 3 Index: 2

Disables security of control data (OCA messages). After calling this method all OCA messages can be sent and received both on insecure and secure connections. The return value indicates whether the operation succeeded. If the operation fails security is not disabled.

OcaSecurityManager::EnableControlSecurity ( )

Level: 3 Index: 1

Enables security of control data (OCA messages). After calling this method all OCA messages are sent and received using a secure connection. The return value indicates whether the operation succeeded. If the operation fails security is not enabled.

Class OcaSecurityManager

ClassID: 1.3.2

extends OcaManager

Properties

static readonly OcaClassID ClassID = 1.3.2

Level: 1 Index: 1

static readonly OcaClassVersionNumber ClassVersion = 2

Level: 1 Index: 2

OcaBoolean secureControlData

Level: 3 Index: 1

Properties inherited from OcaRoot

readonly OcaONo ObjectNumber

readonly OcaBoolean Lockable

readonly OcaString Role

Methods

OcaSecurityManager::AddPreSharedKey ( OcaString identity, OcaBlob key )

Level: 3 Index: 4

OcaSecurityManager::ChangePreSharedKey ( OcaString identity, OcaBlob newKey )

Level: 3 Index: 3

OcaSecurityManager::DeletePreSharedKey ( OcaString identity )

Level: 3 Index: 5

OcaSecurityManager::DisableControlSecurity ( )

Level: 3 Index: 2

OcaSecurityManager::EnableControlSecurity ( )

Level: 3 Index: 1

Methods inherited from OcaRoot

OcaRoot::GetClassIdentification ( ) → ( OcaClassIdentification ClassIdentification)

OcaRoot::GetLockable ( ) → ( OcaBoolean lockable)

OcaRoot::LockTotal ( )

OcaRoot::Unlock ( )

OcaRoot::GetRole ( ) → ( OcaString Role)

OcaRoot::LockReadonly ( )