In a group VPN the members rekey with the server using the Unicast PUSH method. This rekey mechanism is protected by which secure channel?
A.
KEK
B.
IPSec SA
C.
TEK
D.
IKE SA
Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions
This is ONE TIME OFFER
50%
the mechanism happens within a vpn, so multiple answers are possible?
0
0
there is three type of rekey methods:
pull methods: using IKE SA and no need for KEK
unicast push methods:using KEK with Ack mechanism
multicast push methods: KEK without Ack mechanism
0
0
Answer: D (IKE SA)
It’s true that Key Encryption Key (KEK) is used to encrypt rekey messages. But in the same time GDOI exchanges in Phase 2 must be protected by ISAKMP Phase 1 Sas. And GDOI groupkey – push exchange is one of the two types of GDOI exchanges: groupkey-pull and groupkey-push.
0
0
I have the same idea. A
0
0