UADP messages may be signed and encrypted. In this case a security header and a signature have to be added to the message. See clause 18.104.22.168.3 (UADP Message Security) for a complete description of the security mechanisms.
This header layout is basically the same as the header layout defined in C.3.4 but with additional security level ‘Signing and encryption’. The NetworkMessage header layout with signing and encryption is shown in Figure C.9.
Figure C.9 : UADP NetworkMessage header layout with integrity and confidentiality
Table C.10 : UADP NetworkMessage header layout with integrity and confidentiality
|ExtendedFlags1||Byte||Bit 4: Security enabled|
|SecurityFlags||Byte||Bit 0: NetworkMessage Signed enabled Bit 1: NetworkMessage Encryption enabled Bit 2: SecurityFooter disabled Bit 3: Force key reset disabledBit range 4-7: Reserved|
|SecurityTokenId||IntegerId||The ID of the security token that identifies the security key in a SecurityGroup.|
|MessageNonce||Byte||A number used exactly once for a given security key.|