3.1.2.2 Secure and Serialize Message to be Added as Secured Payload

This section specifies the security processing rules for securing and serializing a message into a secured payload. It applies to a client securing application request payload, and it applies to a server securing an application response payload. Such a secured payload is to be added into an envelope in a Request Message or a Response Message (as defined in section 2.2.2) for transmission.

To create a secure payload, the client or server MUST start with the inputs specified in section 3.1.2.2.1 and then perform, in order, the procedures specified in sections 3.1.2.2.2 through 3.1.2.2.9.