Which of the following is defined as an Internet, IPsec, key-establishment protocol, partly based on OAKLEY,
that is intended for putting in place authenticated keying material for use with ISAKMP and for other security
associations?
A.
Internet Key exchange (IKE)
B.
Security Association Authentication Protocol (SAAP)
C.
Simple Key-management for Internet Protocols (SKIP)
D.
Key Exchange Algorithm (KEA)
Explanation:
With IPsec, Key management can be dealt with manually or automatically via a key management protocol. The
genuine standard for IPSec is to make use of Internet Key Exchange (IKE), which is a permutation of the
ISAKMP and OAKLEY protocols.
Incorrect Answers:
B: Security Association Authentication Protocol(SAAP) is not a valid term.
C: Simple Key-management for Internet Protocols (SKIP) was a protocol developed by the IETF Security
Working Group for the sharing of encryption keys.
D: Key Exchange Algorithm includes Diffie-Hellman and RSA, but is not based on OAKLEY.Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, p. 863
https://en.wikipedia.org/wiki/Simple_Key-Management_for_Internet_Protocol
https://technet.microsoft.com/en-us/library/cc962035.aspx