DDS-Security 1.0 FTF Avatar
  1. OMG Issue

DDSSEC_ — How to find the MasterSessionSalt to decrypt ?

Open Closed All
  • Key: DDSSEC_-26
  • Legacy Issue Number: 19791
  • Status: closed  
  • Source: ZettaScale Technology ( Mr. Julien Enoch)
  • Summary:

    The §9.5.3.3.5 explains how to find the MasterKey, the MasterSalt and the SessionId.
    Then it specifies:
    "The session_id attribute within the SecureDataHeader_AES_CTR_HMAC is used to obtain the proper SessionSalt and SessionKey. Note that this only requires a re-computation if it has changed from the previously received SessionId for that CryptographicSessionHandle."

    But a re-computation of the SessionSalt requires the MasterSessionSalt in combination with the MasterKey and the SessionId (see §9.5.3.3.3). And it's not specified how to find the MasterSessionSalt.

  • Reported: DDS-Security 1.0b1 — Wed, 10 Jun 2015 04:00 GMT
  • Disposition: Resolved — DDS-Security 1.0
  • Disposition Summary:

    *In Section 9.5.3.3.5 clarify how to locate the MasterSessionSalt *

    In section 9.5.3.3.5 clarify that the MasterSessionSalt is also located from the transformation_key_id.

  • Updated: Tue, 12 Jul 2016 14:45 GMT