The Blog (Posts about s2opc)

Fuzzing tests

Cinthya Kouamou — Mon, 16 Feb 2026 11:00:18 GMT

Principle of fuzz testing. (Source: cybermatters.info)

Introduction

In the development of industrial software, it is common to manipulate complex binary protocols, specific data formats. These components are traditionally validated using unit tests, an effective approach to verify expected and well-defined behaviors.

S2OPC 1.7.0 release

Systerel — Tue, 20 Jan 2026 08:56:51 GMT

The S2OPC team is proud to announce the 1.7.0 release of S2OPC.

This release introduces several improvements including:

Security Audit: fires OPC UA events in case of cybersecurity related events
Role Permission: to assign permissions to roles rather than individual users, simplifying management and improving security
PubSub Extended Support: it is now available on Windows
History Read: adds the capacity for the server to store previous values of nodes
Node Management : completes the services to add and delete nodes run time
Performance Improvement: improves performance of write/add nodes operations
Zephyr 4.1 Support: compatible with the latest version of this real-time operating system

S2OPC 1.6.0 release

Systerel — Mon, 27 Jan 2025 08:56:51 GMT

The S2OPC team is proud to announce the 1.6.0 release of S2OPC.

This release introduces several improvements including:

OPC UA events management
Support of Zephyr revision 3.6 (see issue #1464)
Support of PikeOS revision 5.1 (thanks to our partner SYSGO) (see issue #1160)
Support of MbedTLS revision 3 (see issue #1446)
A complete rework of our Python binding PyS2OPC (see issue #1251)

As this revision contains important cybersecurity fixes, we advice all our customers to switch to this new revision.

S2OPC 1.5.1 release

Systerel — Thu, 13 Jun 2024 08:56:51 GMT

The S2OPC team is proud to announce the 1.5.1 release of S2OPC.

The main new features are the availability of a demo server implementing the Push Management model according to the OPC UA part 12 (see issue #1247), and a hook to re-evaluate X509IdentityToken certificates for all sessions (on server side, see issue #1370).

First Level Security Certification (CSPN): The S2OPC Case Study

Vincent Pouzol, Vincent Lacroix — Sun, 12 May 2024 09:00:59 GMT

In October 2023, Systerel received the Security Visa from the French National Cybersecurity Agency (ANSSI) for the CSPN (First Level Security Certification) of its product: S2OPC. This achievement gives us the opportunity to focus on what the CSPN is and to provide feedback on the certification process.

S2OPC 1.5.0 release

Systerel — Tue, 06 Feb 2024 08:56:51 GMT

The S2OPC team is proud to announce the 1.5.0 release of S2OPC.

Securing IIoT communications using OPC UA PubSub and Trusted Platform Modules

Olivier Gilles, Daniel Gracia-Perez, Pierre-Antoine Brameret, Vincent Lacroix — Thu, 05 Jan 2023 11:23:15 GMT

In the Industry 4.0 context, data are a valuable asset that must be protected. OPC UA PubSub enables secure and interoperable solutions, but authentication of IIoT devices remains a sensitive issue. This article presents a novel approach based on open source software, using a Trusted Platform Module to protect secrets on devices, and evaluate the security level on a predictive maintenance use case.

Use of B method for dynamic structures in S2OPC

Frédéric Badeau, Vincent Lacroix, Vincent Monfort, Laurent Voisin — Tue, 22 Jun 2021 09:57:44 GMT

The software B method has so far been mainly used in the industrial world to develop safety critical software with very basic memory management limited to arrays of fixed size defined at compilation time.

We present here an alternative approach for modelling software based on a more classic memory management with dynamically allocated complex data structures accessed through pointers.

Certificate trust chain validation in OPC UA

Vincent Monfort — Thu, 26 Nov 2020 15:20:00 GMT

OPC UA client/server protocol security is based on application certificates, each application shall trust each other. Determining if a certificate is trusted might include verification of a trust chain in cases that were not expected at first sight. This article explains how to validate a certificate to pass OPC UA certification 1 and hence how to configure correctly certificate validation to ensure your application certificate is accepted.

S2OPC — Safe, Secure, Open Source OPC-UA

Mathieu Clabaut — Thu, 20 Feb 2020 16:24:43 GMT

Following the INGOPCS R&D project initiated with the support of the ANSSI, Systerel has built upon its experience of safe critical systems to develop a free and secure OPC UA stack under the Apache 2.0 license: Safe and Secure OPC (S2OPC).

In this article, we will give an overview of OPC UA, describe the S2OPC product, and then focus on the benefits and challenges of the open source approach for such a development.