Protocol Feature Credential container in server response Portable Symmetric Key Container (PSKC) as the default Allow others such as PKCS#12, PKCS#5 XML format Opaque structure is used for other formats Service provider documents its format profile for a client to consume Encryption key for credential data Shared secret (activation code derived key) that the user has had Server pre-loaded shared secret with a device (Smart Card) Public key of device certificate Encryption methods List of PBE List of symmetric key encryption methods (e.g, 3DES) Asymmetric keys Extensions fields allowing additional parameters needed by future key types or organization specific extension |