A single master key provides keying material for confidentiality and integrity protection of the SRTP and the corresponding SRTCP stream.
The SRTP master key is updated in the two circumstances:For each master key, a record of number of packets processed sent is maintained. There is a limit on the number of packets processed that can be processed by a single master key. During encryption or decryption of the RTP/RTCP packets, the SRTP stack checks for the number of packets processed. If the number of packets processed, ha s reached the maximum permisible value , the master key status is identified as stale. The SRTP notifies the SRTP client of the master key status. The SRTP client may decide to update the master key in response to the notification.
The SRTP client may update the master key for robust security, prior to master key stale status identification.
An SRTP session must be created and initialized.
A new master key is returned to the stream or session.
SRTP implementation derives new session keys from the new master key.
SRTP client updates the stream/session cryptographic context with a the new master key.
Copyright ©2010 Nokia Corporation and/or its subsidiary(-ies).
All rights
reserved. Unless otherwise stated, these materials are provided under the terms of the Eclipse Public License
v1.0.