The PT-TLS (RFC 6876) clients carol and dave set up a connection each to the policy decision point (PDP) alice. Endpoint carol uses password-based SASL PLAIN client authentication during the PT-TLS negotiation phase whereas endpoint dave uses certificate-based TLS client authentication during the TLS setup phase.
During the ensuing PT-TLS data transport phase the OS and SWIMA IMC/IMV pairs loaded by the PT-TLS clients and PDP, respectively, exchange PA-TNC (RFC 5792) messages embedded in PB-TNC (RFC 5793) batches. The SWIMA IMC on carol is requested to deliver all Software ID Events whereas dave must send a full Software Inventory.