Alert Standard Format (ASF) Specification

Alert Standard Format (ASF) Specification v2.0 DMTF Document DSP0136

DSP0136 23 April 2003 Page 29 of 94

All messages that are sent to the RMCP security extensions UDP port prior to the establishment

of a session (at the end of the Creation phase) must be encapsulated within an RSP Header that

uses the “Bypass” Session ID (see 3.2.3.1). This also means that no integrity protection is

provided to messages by RSP until the Creation phase is complete. As a result, all protocols that

run prior to the end of the Creation phase (RSSP and RAKP) must provide their own security

mechanisms (if required).

3.2.3.5 RSSP Authenticated Key-Exchange Protocol (RAKP)

RSSP can support a number of different authentication and key exchange protocols during its

Creation phase. For this specification, the mandatory-to-implement authentication and key

exchange protocol is the RSSP Authenticated Key-Exchange Protocol (RAKP). RAKP (defined

below) was developed based on the Authenticated Key Exchange Protocol (AKEP) defined by

Bellare and Rogaway in [BR1].

Termination Message Creation Discovery

Transfer

(one or more)

Mgt Console

Client

Presence

Ping

Presence

Pong

Open

Session

Request

Open

Session

Response

Algorithm “x”

Request

lgorithm “x”

Response

Message “x”

Request

Message “x”

Response

Session

Request

Session

Response

(one or more)