Implementing Cisco Network Security (IINS, legacy) — Question 38

What are the two purposes of the Internet Key Exchange in an IPsec VPN? (Choose two)

Answer options

• A. The Internet Key Exchange protocol establishes security associations
• B. The Internet Key Exchange protocol provides data confidentiality
• C. The Internet Key Exchange protocol provides replay detection

Correct answer:

Explanation

The correct answers are A and C. Option A is correct because the Internet Key Exchange (IKE) is responsible for establishing security associations that define how the IPsec VPN will secure data. Option C is also correct as IKE implements replay detection to prevent replay attacks. Option B is incorrect because while IKE facilitates secure communication, data confidentiality is primarily achieved through the encryption methods utilized in the IPsec protocol, not directly by IKE.