CISSP – Information Systems Security Architecture Professional (ISSAP) — Question 55
You work as a Chief Security Officer for Tech Perfect Inc. You have configured IPSec and ISAKMP protocol in the company's network in order to establish a secure communication infrastructure. ccording to the Internet RFC 2408, which of the following services does the ISAKMP protocol offer to the network? Each correct answer represents a part of the solution. Choose all that apply.
Answer options
- A. It relies upon a system of security associations.
- B. It provides key generation mechanisms.
- C. It authenticates communicating peers.
- D. It protects against threats, such as DoS attack, replay attack, etc.
Correct answer: C, B, D
Explanation
The correct answers are B, C, and D because ISAKMP provides key generation mechanisms, authenticates peers, and protects against various threats including DoS and replay attacks. Option A is incorrect as ISAKMP does not solely rely on security associations; it facilitates their establishment.