Returning the Verifier to the Client
The server returns a verifier to the client, which includes the following:
-
The index ID, which the server records in its credential cache
-
The client's time stamp minus 1, which is encrypted by the conversation key
The reason for subtracting 1 from the time stamp is to ensure that the time stamp is invalid and that it cannot be reused as a client verifier.
- © 2010, Oracle Corporation and/or its affiliates