1 Scope
2 References
2.1 Normatives references
2.2 Informative references
3 Definitions
4 Abbreviations
5 Conventions
6 Architecture and Service Characteristics
6.1 Architecture
6.2 Service characteristics
6.2.1 Elements of Service
6.2.2 Classifications of Elements of Service
7 Data Flow
8 IA Messages
8.1 Message Format Definitions
8.2 Message Syntax Definitions
8.2.1 Basic Message
8.2.2 IA Status/Control Message
8.2.3 Enhanced Message
8.3 IA Status Message Detail Format
8.3.1 First Octet
8.3.2 Second Octet
8.3.3 Third and Fourth Octets
8.3.4 Special Test Message
8.3.5 Invalid Message
9 Client Specifications
9.1 Determine IP Destination Address
9.2 Connect to Server
9.2.1 Allocate TLS Data Structure and Memory
9.2.2 Open Socket
9.2.3 Send TLS Client Hello
9.2.4 Send Client's Certificate to Server
9.2.5 Client Key Exchange
9.2.6 Send Client Certificate Verify
9.2.7 Change Cipher Specs
9.2.8 Send Client Finished
9.3 Send Application Data to Server
9.4 Transmission Logging
9.5 Client Disconnect
10 Server Specifications
10.1 Initialize Server
10.2 Accept Connection from Client
10.3 Message Read Setup
10.3.1 Allocate TLS Data Structure and Memory
10.3.2 Bind TLS Data Structure to the Socket
10.3.3 Send TLS Server Hello
10.3.4 Send Server's Certificate to Client
10.3.5 Server Key Exchange
10.3.6 Send Client Certificate Request
10.3.7 Send Server Hello Done
10.3.8 Execute Change Cipher Specs
10.3.9 Send Server Finished
10.4 TLS Read Processing
10.5 Server Disconnect
10.6 Parsing the Received Message
10.7 Transfer Data to Immediate User (Translator/Security Module)
10.8 Receipt Logging
11 Operational requirements
11.1 Security
11.2 Digital Certificates
11.3 Flow Control
12 Port Assignments
Annex A -ASN.1 Production Module
Annex B - Design
Considerations
B.1 Multi-processing/Multi-threading
B.2 Non-Persistent Versus Persistent Connections
B.3 Resumable TLS Sessions
Annex C - Error
Handling/Recovery
Appendix I -
Non-normative references