parties (often a request for authentication) and then later “replays” the
               captured message to open a new session. This attack can be defeated

               by incorporating a time stamp and expiration period into each
               message.