分类: 网络与安全
2010-07-21 14:22:38
In cryptography, Master/Session is a key management scheme in which a pre-shared Key Encrypting Key (called the "Master") is used to encrypt a randomly generated and insecurely communicated Working Key (called the "Session" key. The Working Key is then used for encrypting data to be exchanged.
The Master/Session technique was created in the days before asymmetric techniques, such as Diffie Hellman, were invented. This technique still finds widespread use in the financial industry. It is routinely used between corporate parties such as issuers, acquirers, switches. Its use in device communications (such as PIN pads) is in decline given the advantages of techniques such as DUKPT.
Its advantage is simplicity, but it suffers the disadvantage of having to communicate the pre-shared Key Exchange Key, which can be difficult to update in the event of compromise.