3.4.1 Abstract Data Model

This section describes a conceptual model of possible data organization that an implementation maintains to participate in this protocol. The described organization is provided to facilitate the explanation of how the protocol behaves. This document does not mandate that implementations adhere to this model as long as their external behavior is consistent with that described in this document.

The abstract data model for the Application Server is identical to that specified in section 3.2.1.

Additionally, the server maintains the following parameter:

• ApplicationRequiresCBT: A Boolean setting from the application requiring channel binding.<75>

For KILE implementations that use a security identifier (SID)-based authorization model, the server maintains the following parameter:

• ImpersonationAccessToken (Public): A Token/Authorization Context (see [MS-DTYP] section 2.5.2).