When examining the test log of a service test in RPT with SOA extension you may notice that in the extended properties for the request there's a property that says
"Data to send before security":
Similarly, in the test log of a service test you may notice there's a "Data received after security" extended attribute for the response:
What do these properties refer to?
Data to send before security
Think of this as "Data to send before security algorithms, if any, are applied"
Let's go back to the test for this request. For demonstration purposes I added a Timestamp security algorithm to the Request stack:
In the lower left hand corner we see a pane for Stack Contents
As you can see the Initial Message is the same as the value of the extended property Data to send before security
If I wanted to see what will actually being sent at run time then I would click on the Time Stamp section of the Stack Contents
Let's go back to the test log and find the actual message, security section and all. It's in the Properties but not Extended Properties and you can see it matches the message in the screen shot above in the Test Editor
Data received after security
This is the very similar to Data to send before security but is only seen on the response side.
This is to to configure the security or processing algorithms for incoming responses. Another way of describing this is if the response is encrypted, then the extended property Data received after security is the unencrypted message
Hopefully you've found this useful in understanding these two extended properties and what they actually mean..