no. the "shared secret from the authentication process" refers to the random key generated by the AS (and transported to both the server and client in tickets that are encrypted with the servers/clients key).
the situation is that server and client already authenticated each other and have a random shared secret key for the "session" and now want to setup encryption on the channel. the functionality that is desired is to be able to "negotiate" the cipher suits and record layer protocol versions. -- cinap
