2.2.1.10.1 Security Exchange PDU Data (TS_SECURITY_PACKET)
The TS_SECURITY_PACKET structure contains the encrypted client random value which is used together with the server random (section 2.2.1.4.3) to derive session keys to secure the connection (sections 5.3.4 and 5.3.5).
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
basicSecurityHeader |
|||||||||||||||||||||||||||||||
|
length |
|||||||||||||||||||||||||||||||
|
encryptedClientRandom (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
basicSecurityHeader (4 bytes): A Basic Security Header (section 2.2.8.1.1.2.1). The flags field of the security header MUST contain the SEC_EXCHANGE_PKT flag (0x0001).
length (4 bytes): A 32-bit, unsigned integer. The size in bytes of the buffer containing the encrypted client random value, not including the header length.
encryptedClientRandom (variable): The client random value encrypted with the public key of the server (section 5.3.4).