Which of the following is an Internet IPsec protocol to negotiate, establish, modify, and delete security
associations, and to exchange key generation and authentication data, independent of the details of any
specific key generation technique, key establishment protocol, encryption algorithm, or authentication
mechanism?

A.
OAKLEY

B.
Internet Security Association and Key Management Protocol (ISAKMP)

C.
Simple Key-management for Internet Protocols (SKIP)

D.
IPsec Key exchange (IKE)

Explanation:
ISAKMP defines actions and packet formats to establish, negotiate, modify and delete Security Associations. It
is distinct from key exchange protocols with the intention of cleanly separating the details of security association
management and key management from the details of key exchange.
Incorrect Answers:
A: The Oakley Key Determination Protocol is a key-agreement protocol that allows authenticated parties to
exchange keying material across an insecure connection by making use of the Diffie–Hellman key exchange
algorithm.
C: Simple Key-management for Internet Protocols (SKIP) was a protocol developed by the IETF Security
Working Group for the sharing of encryption keys.
D: Internet Key Exchange (IKE) provides authenticated keying material for use with ISAKMP.

https://en.wikipedia.org/wiki/Internet_Security_Association_and_Key_Management_Protocol
https://en.wikipedia.org/wiki/Oakley_protocol
https://en.wikipedia.org/wiki/Simple_Key-Management_for_Internet_Protocol
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, p. 863