3.2.5.2.4 Secure Message

The application response becomes the Payload element as defined in section 3.1.2.2.1.

The server MUST also prepare a fragment element with "fragment" name in the namespace "urn:groove.net". The fragment element MUST have one child element named "Payload". The server MUST set the ManagementServer and Method attributes for the Payload element. These values MUST match with those in the corresponding elements of the incoming request. The Payload element MUST have one child element named "SE" in the namespace of "urn:groove.net". The "g:SE" element MUST contain no content and is referred as secured element. This fragment element becomes the header element as defined in section 3.1.2.2.1.

With the fragment element, the application response, and the shared key, the server MUST follow the steps in section 3.1.2.2 to secure the application response and retrieve the serialized secured fragment element.