2.2.6 Unwrapped Secret
The UnwrappedSecret structure consists of the ClientWrap secret unwrapped through the ServerWrap subprotocol.
The UnwrappedSecret structure is used by the server to return the unwrapped secret to the client in some special cases, as specified in section 3.1.4.1.2.
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
0x01 |
0x00 |
0x00 |
0x00 |
||||||||||||||||||||||||||||
|
EncSalt (16 bytes) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
|
RecoveredSecret (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
EncSalt (16 bytes): This MUST be a random number 16 bytes in length.
RecoveredSecret (variable): This field MUST contain the secret recovered by the unwrapping operation, formatted as specified in section 2.2.6.1.