What is OPC UA? A Complete Guide for Industrial Automation

What is OPC UA?

OPC UA (Open Platform Communications Unified Architecture) is a modern, platform-independent machine-to-machine communication protocol designed for industrial automation. It enables secure, reliable, and standardised data exchange between devices, machines, control systems, and enterprise applications from the factory floor all the way to the cloud.

Developed by the OPC Foundation and standardised as IEC 62541, OPC UA has become the de-facto communication standard for Industry 4.0, IIoT (Industrial Internet of Things), and digital transformation programmes across manufacturing, energy, oil and gas, pharmaceuticals, and critical infrastructure.

Unlike legacy industrial protocols, OPC UA is:

• Platform-independent: runs on Windows, Linux, embedded devices, and cloud infrastructure
• Security-first: built-in encryption, authentication, and data integrity from the ground up
• Semantically rich: uses an object-oriented information model that describes not just data values but their meaning and relationships
• Scalable: from 8-bit microcontrollers to enterprise servers and cloud platforms
• Interoperable: a single standard that replaces dozens of proprietary protocols

In plain language: OPC UA is the common language that allows a Siemens PLC, a Rockwell SCADA system, a cloud analytics platform, and an AI model to all understand each other – securely and without custom integrations for every pairing.

Discover our OPC UA Products

The history of OPC UA

OPC Classic (1996–2006) was the original OPC standard. It solved a real problem allowing industrial devices from different manufacturers to share data – but it had a fundamental flaw: it was built on Microsoft’s COM/DCOM technology, which meant it was Windows-only, hard to secure, and difficult to use across firewalls or wide-area networks.

As Industry 4.0 began to take shape in the mid-2000s, manufacturers needed something better. The OPC Foundation responded by designing OPC UA from scratch with a clear mandate: keep everything that worked about OPC Classic, discard the Windows dependency, and make security non-negotiable from the first line of code.

The core OPC UA specification (Part 1) was published in 2008. The protocol has been continuously updated since then, with major additions including:

• PubSub (2018): a publish-subscribe communication model for IIoT-scale deployments
• OPC UA FX (Field eXchange, 2023): for controller-to-controller communication at the field level
• OPC UA over cloud protocols: MQTT, AMQP, Kafka, and REST integrations formalised by the OPC Foundation Cloud Initiative (2024–2026)

Today, OPC UA is implemented by thousands of device vendors and software providers worldwide, including Siemens, Rockwell Automation, Emerson, ABB, Beckhoff, and many others.

How OPC UA works: architecture explained

The protocol uses a service-oriented architecture (SOA) built on two complementary communication models.

Client-server model

A client application connects to an OPC UA server, requests data, reads or writes values, subscribes to changes, and receives notifications. This is the right model for:

• SCADA systems reading PLC data in real time
• MES platforms querying production KPIs
• Historians archiving process data
• Applications that need guaranteed, point-to-point delivery

Publish-subscribe (PubSub) model

Introduced in OPC UA Part 14, PubSub decouples data producers from consumers. Publishers send data to a message broker (MQTT, AMQP, or UDP multicast) without knowing who is listening. Subscribers receive the data they need without connecting directly to the source. This model scales to thousands of endpoints and is ideal for:

• IIoT sensor networks
• Cloud data pipelines
• Edge-to-cloud architectures
• Large-scale monitoring systems where many consumers need the same data

Transport and encoding

The address space and information model

One of OPC UA’s most powerful – and often underappreciated – features is its information model. Every piece of data exposed by an OPC UA server lives in a structured address space: a hierarchical, object-oriented model that describes not just values but their types, relationships, methods, and events.

This means that when an OPC UA client connects to a server, it can discover what data is available, what it means, and how it relates to other data – automatically and without prior configuration. This is what enables true interoperability between systems from different vendors.

The security model

Security is not an add-on in OPC UA; it was designed in from the very beginning. This is a fundamental difference from OPC Classic, where DCOM-based communication exposed serious vulnerabilities that are difficult or impossible to remediate without a full protocol migration.

Its security architecture operates at three layers:

Transport security

Every connection uses TLS-equivalent encryption (128-bit or 256-bit AES) to protect data in transit. Messages are also signed, preventing tampering. Three security modes are available: None (for isolated test environments only), Sign, and Sign & Encrypt.

Authentication

OPC UA supports multiple identity verification methods:

• Anonymous (suitable only for public read-only data)
• Username/password with encrypted transmission
• X.509 certificates the recommended method for production environments, where each client and server holds a cryptographic certificate that must be mutually trusted before a session is established
• Token-based authentication for integration with enterprise identity systems

Authorisation

Once authenticated,th protocol enforces role-based access control (RBAC). Different users or applications can be granted different permissions – read-only access to some nodes, read/write to others, no access to sensitive process data.

OPC Classic vs. OPC UA: key differences

OPC Classic, introduced in the mid-1990s by OPC Foundation, was one of the first standards aimed at facilitating communications in industrial automation. The OPC specifications provided a common interface for data exchange between different systems and devices, enabling interoperability in a heterogeneous environment.

What’s OPC?

OPC Classic vs OPC UA

What industries use OPC UA?

OPC UA is used across virtually every sector of industrial automation. The following represent the highest-adoption industries:

Manufacturing (discrete and process): The protocol is used to connect PLCs, robots, vision systems, and quality control equipment to MES and ERP platforms. The umati initiative has accelerated its adoption in machine tool manufacturing particularly strongly in Germany and across the EU.

Oil and gas: combined with the WITSML companion specification, it enables real-time wellsite data integration. Major operators in North America and the Middle East use OPC UA as the data integration backbone between field systems, historians, and cloud analytics.

Energy and utilities: Grid operators and power generation companies use this communication protocol to connect SCADA systems, energy management systems, and smart grid devices. Compliance with NERC CIP in North America and EU grid codes drives OPC UA adoption as a secure alternative to legacy protocols.

Pharmaceuticals: FDA 21 CFR Part 11 and EU Annex 11 requirements for electronic records and audit trails align naturally with its security and logging capabilities. Pharma manufacturers in the US and EU use it to integrate batch management systems with process automation.

Building automation: The OPC UA for Building Automation companion specification enables HVAC, lighting, access control, and energy management systems to share data on a common platform – a growing requirement for smart building and ESG reporting mandates in Europe and the Middle East.

Water and wastewater: Utilities use this protocol to integrate remote telemetry units (RTUs) with central SCADA systems. The protocol’s firewall-friendliness makes it practical for geographically distributed infrastructure.

How to migrate from OPC Classic to OPC UA

Migrating from OPC Classic to OPC UA becomes increasingly essential to leverage modern features like platform independence, enhanced security, and scalability. This transition ensures that systems remain future-proof, interoperable, and capable of meeting contemporary industrial requirements. However, the migration process can seem daunting due to the significant differences between the two standards.

To facilitate a smooth and efficient transition from OPC Classic, we provide OPC UA Wrapper, a plug-and-play software product designed for seamless integration. The Wrapper bridges the gap between OPC Classic and OPC UA, facilitating the coexistence of both protocols and allowing organizations to advance industrial communication without disrupting critical processes.

• Migration Challenges and how the Wrapper addresses them

The migration process is not without its challenges. As organizations embark on this migration journey, hurdles such as data mapping, security integration, and protocol interoperability may arise.

OPC UA Wrapper is engineered to tackle migration challenges by providing a comprehensive solution and mitigating the complexities associated with such migrations.

·        Features

The OPC UA Wrapper offers comprehensive functionalities to ensure a robust and versatile integration process:

• COM Server to UA Server: allows Unified Architecture (UA) clients to access classic OPC servers as if they were UA servers
• UA Server to COM Server: enables classic OPC clients to access UA servers as if they were OPC COM servers
• Intuitive User Interface: simplifies the migration process with a user-friendly interface for easy configuration and integration management
• Run as Windows Service: operates in the background as a Windows service
• OPC UA Security: provides security features such as secure communication channels, session tracking, encryption, and message signing, with configurable security modes and user identity tokens
• Log Capabilities: records messages with different logging levels for tracking execution and diagnosing problems, aiding in troubleshooting
• Read and Write OPC Item Values: allows easy reading and writing of OPC item values for enhanced control and monitoring
• Historical Data Read Capability: supports reading historical data for analysis and insights from past industrial processes, enhancing industrial communication capabilities
• Reading and acknowledging alarms and events: real-time monitoring and alerting by facilitating the mapping of alarms and events between OPC Classic Server and the OPC UA information model, enabling efficient management and timely acknowledgment

The software supports multiple OPC specifications, including OPC Data Access (DA), OPC Historical Data Access (HDA), and OPC Alarms & Events (AE), providing a comprehensive solution for various industrial requirements.

Watch Demo Videos