Network > Certificates

The Secure Communication feature adds an extra layer of security to Core-to-Core, Core-to-Peripheral, and Core-to-external control connectivity. When enabled, devices and control connections establish a trust relationship, exchanging keys to encrypt all communication to ensure privacy and system robustness. System administrators may optionally approve each peripheral and control connection to verify their validity. Established trust relationships with peripherals can be used to prevent those peripherals from being commandeered by other systems to maintain system integrity, privacy, and avoid disruption from errant system configurations.

Note: Certificates must be PEM-encoded (ASCII, base64).

Prerequisites

Device Certificate Tab

Secure Communication Tab

Q-SYS communication between Cores and Peripherals can be secured by encryption and mutual authentication using X.509 certificates. Secure mode of communication applies to the two types of connections:

Control Connections: Involving design controls.

Device-to-Device Web Connections: Including design deploy, firmware update, device status, etc.

Note: At this time, we do not recommend enabling this feature on systems with more than 64 Peripherals. This limit will be removed in the next patch release.