Device / HostSecurity / HostRootCertPubKey Value

If PKI is enabled for a specific security level, this value must contain the ASN.1 DER encoded tag, that represents the public key of the X503 host root certificate. The reader creates the host root certificate from this value, HostRootCertSubjectName and HostRootCertSnr to verify the host certificate chain.

Only the raw bits are stored in this field. The crypto algorithms have to be always ECC-P256 with SHA256. RootCertPubKey[0] must not be used, since security level 0 works unencrypted.

Properties

Format

Name Type/Size Description
- ASCII string (until end of frame) -