DDSSEC12 — Provide mechanism for changing the session keys associated with the different DDS Entitites

The builtin plugins create session keys for multiple DDS entities (DomainParticipant, DataWriter, DataReader) and share those with the matched Entities that successfully authenticate and have the proper authorization. The session key(s) are used to protect the messages sent by the entity using encryption and/or message-authentication codes.

Importantly the same key (e.g. a DataWriter key) may be shared with multiple matched DataReaders.

There are situations where an Entity may need to change is Session Key. E.g. if it has been used to encode too many messages, or if there is a need to "revoke" access for one or more existing matched Endpoints.

The specification should provide and describe the mechanism that implementations may use to change session Keys such that they are able to interoperate across vendors.