1. Home
  2. Knowledge Base
  3. EVC-net
  4. Charge Points
  5. How to set up a secured charging station connection: OCPP 1.6 J version 
Searching...

How to set up a secured charging station connection: OCPP 1.6 J version 

Table of Contents

Communication between charging stations and the Charge Point Operator (CPO) is established via the WebSocket protocol at:

  • ws://ws.evc-net.com — for standard connections
  • ws://ws-private.evc-net.com — for charge points connected via our private VPN SIM card

Note: By default, OCPP websockets are not encrypted and provide no way for authenticating a chargepoint.

To strengthen security and ensure trusted communication, we recommend:

  • Upgrading WS to WSS
  • Using basic authentication
  • Using root certification for verification

Different profiles to ensure secured connections

Please, note that we highly recommend that you update charge points to at least profile 2.

Security profile: Basic authentication over HTTP/WS (mandatory)

  • Open the charger dashboard at data of http://evc-net.com .
  • Set security profile 2/ to “Basic authentication over HTTP/WS” .
  • Input the security data as CHARGERBOXID : Base 64 character or Ascii values and save.

Security profile: Basic authentication over HTTPS/WWS (recommended)

  • Open the charger dashboard at data of http://evc-net.com.
  • Set up the security profile to 3/ “Basic authentication over HTTPS/WWS”.
  • Input the security data as CHARGERBOXID : Base 64 character or Ascii values and save.

Security profile: Client certificate over HTTPS/WWS

  • Open the charger dashboard at data of http://evc-net.com .
  • Set security profile to 4/ Client certificate over HTTPS/WWS” .With this case the charge point needs to get a signed certificate authorization from LMS back end but the charger needs to also have a root certificate for verification.
  • Input the security data as CHARGERBOXID : Base 64 character or Ascii values and save.

Security profile: None

Note: At this moment, using this connection is not recommended, as it can be taken over by simply guessing the communication-id of your charge point.

Use at least “Basic authentication over HTTP/WS” (mandatory), or another secure method which is listed as “recommended”.

This option will no longer be available starting 1 January 2027.

  • Open the charger dashboard at data of http://evc-net.com .
  • Set the security profile 1/none for no Authentications.

The setup may differ per manufacturer. For further specifications, please refer to the manual of your charge point manufacturer.

Updated on May 5, 2026
Was this article helpful?
Yes No

Related Articles