Certified Network Defender (CND) — Question 30
Andrew would like to configure IPsec in a manner that provides confidentiality for the content of packets. What component of IPsec provides this capability?
Answer options
- A. IKE
- B. ESP
- C. AH
- D. ISAKMP
Correct answer: B
Explanation
The correct answer is B, ESP (Encapsulating Security Payload), which provides encryption to ensure confidentiality of the packet content. A (IKE) and D (ISAKMP) are involved in the key exchange process and do not provide confidentiality. C (AH) offers authentication but does not encrypt data, thus failing to ensure confidentiality.