Overview#Session Key is a relatively short-lived and often single-use Symmetric Key used for encryption of messages in one communication session.
A Session Key should be strong enough to remain secure for the lifespan of the session.
Session Key can be derived from a Hash Function.
Asymmetric Key Cryptography is too slow for many purposes, and all secret key algorithms require that the key is securely distributed. By using an Asymmetric Keys to encrypt the Session Key for another, faster, Symmetric Key overall performance can be improved considerably.
Alternative Names for Session Key#The terms MAC key, Session Key, and often Symmetric Key are typically used interchangeably and refer to some form of cryptographic keying material established between the client and server.
EDirectory (NICI) Session Key#EDirectory Session Keys are SASDFM keys
More Information#There might be more information for this subject on one of the following:
- Client-To-Server Session Key
- Cryptographic Key
- Double Ratchet Algorithm
- Kerberos Cryptosystem Negotiation Extension
- Key Distribution Center
- LDAP Signing
- NICISDI Keys
- OAuth 2.0 Message Authentication Code (MAC) Tokens
- Perfect Forward Secrecy
- Primary Refresh Token
- SASDFM key
- Security Domain Infrastructure
- TLS PRF
- TLS Session Keys