A. A DH key exchange is an algorithm that utilizes asymmetric cryptographic keys.
B. The DH key exchange is used to establish a shared secret over an insecure medium during an IPSec phase 1 exchange.
C. The DH exchange is susceptible to man-in-the-middle attacks.
D. The DH exchange is used to authenticate the peer device duringan IPSec phase 1 exchange.
E.A DH exchange provides Perfect Forward Secrecy (PFS).
您可能感興趣的試卷
你可能感興趣的試題
A. 3DES is muchmore secure than DES.
B. Both DES and 3DES are stream ciphers.
C. DES uses 64 bitkeys, although the effective key lengthis only 56bits.
D. The decryption operation for both DES and 3DES is the same as the encryption operation.
E. DES can only be used for encryption, whereas 3DES can also be used for authentication.
A. The RADIUSVendor Specific Attribute type is decimal 26.
B. A radius server that does not understandthevendor-specific information sent by a clientmust reject the authentication request.
C. A vendor can freely choose theVendor-ID it wants to use when implementing Vendor Specific Attributes as long as the same Vendor-ID is used on all of its products.
D. Vendor Specific AttributeMUST include the Length field.
E. In Cisco’s Vendor Specific Attribute implementation, vendor-ID of 1 is commonly referred to as Cisco AV(Attribute Value) pairs.
F. Vendor Specific Attributes use a RADIUS attribute type between 127 and 255.
A. Access-reject
B. Access-response
C. Access-challenge
D. Access-reply
E. Access-accept
A.Prevents DoS from legimate, non-hostile end systems
B.Prevents disruption of "special services", such as Mobile IP
C.Defeats DoS Attacks which employ IPSource Address Spoofing
D.Restricts directed broadcasts at the ingress router
E.Allows DHCP or BOOTP packets to reach the relay agents asappropriate
A. Multicastis supported
B. Dynamic routing protocols are supported
C. VPN configurations are supported
D. Static routes are supported
最新試題
Select the two correctstatements from the list below that describe DES and 3DES: ()
Choose the most correct statements about SMTP/ESMTP. ()
Which statements are true concerning NAT? ()
Which is a benefit of implementing RFC 2827?()
What Cisco technology protects against Spanning-Tree Protocol manipulation?()
Which ones are the two type of ciphers?()
Which SSL protocol takes anapplication message tobe transmitted, fragments the datainto manageable blocks, optionally compresses the data, applies a MAC, encrypts, adds a header, and transmits the resulting unit ina TCPsegment?()
Which should be the key driver for a company security policy’s creation, implementation and enforcement?()
For a router to obtain a certificate from a CA, what is the first stepof the certificate enrollment process?()
Which one of the following is NOT a supported IKE attribute?()