Which of the following is defined as a key establishment protocol based on the Diffie-Hellman algorithm
proposed for IPsec but superseded by IKE?
A.
Diffie-Hellman Key Exchange Protocol
B.
Internet Security Association and Key Management Protocol (ISAKMP)
C.
Simple Key-management for Internet Protocols (SKIP)
D.
OAKLEY
Explanation:
The Oakley Key Determination Protocol is a key-agreement protocol that allows authenticated parties to
exchange keying material across an insecure connection by making use of the Diffie–Hellman key exchange
algorithm. It formed the basis for the more widely used Internet key exchange protocol.
Incorrect Answers:
A: The Diffie-Hellman algorithm proposed for IPsec is the Diffie-Hellman Key Exchange Protocol.
B: Internet Key Exchange (IKE) provides authenticated keying material for use with ISAKMP. It has not
superseded ISAKMP.
C: SKIP is a distribution protocol, not a key establishment protocol.Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, p. 863
https://en.wikipedia.org/wiki/Oakley_protocol
https://en.wikipedia.org/wiki/Diffie–Hellman_key_exchange
https://en.wikipedia.org/wiki/Simple_Key-Management_for_Internet_Protocol
The question is “Which of the following is defined as a key establishment protocol based on the Diffie-Hellman algorithm proposed for IPsec but superseded by IKE?”, so the answer might be “A. Diffie-Hellman Key Exchange Protocol”?
As “The Diffie-Hellman algorithm proposed for IPsec is the Diffie-Hellman Key Exchange Protocol.”
0
0
And Internet Key Exchange is a combination of ISAKMP (Internet Security Association and Key Management Protocol) and Oakley protocols.
0
0