Overview#Session Key is a relatively short-lived and often single-use Symmetric Key used for encryption of messages in one communication session.
A Session Key should be strong enough to remain secure for the lifespan of the session.
Session Key can be derived from a Hash Function.
Asymmetric Key Cryptography is too slow for many purposes, and all secret key algorithms require that the key is securely distributed. By using an Asymmetric Keys to encrypt the Session Key for another, faster, Symmetric Key overall performance can be improved considerably.
Alternative Names for Session Key#The terms MAC key, Session Key, and often Symmetric Key are typically used interchangeably and refer to some form of cryptographic keying material established between the client and server.
EDirectory Session Key#Session Key in EDirectory (NICISDI) is used to securely send data from a client to a server or server to server or vice versa, NICISDI provides the SASDFM keys which serve as a NICISDISession Key.
More Information#There might be more information for this subject on one of the following:
- Client-To-Server Session Key
- Cryptographic Key
- Double Ratchet Algorithm
- Kerberos Cryptosystem Negotiation Extension
- NICISDI Keys
- NMAS Result Codes
- OAuth 2.0 Message Authentication Code (MAC) Tokens
- Perfect Forward Secrecy
- Security Domain Infrastructure
- TLS PRF
- TLS Session Keys