ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-209 All Questions

View all questions & answers for the 300-209 exam
Go to Exam

Exam 300-209 topic 1 question 108 discussion

Actual exam question from Cisco's 300-209
Question #: 108
Topic #: 1
[All 300-209 Questions]

Refer to the exhibit.

Which statement about the given IKE policy is true?

  • A. The tunnel will be valid for 2 days, 88 minutes, and 00 seconds.
  • B. It will use encrypted nonces for authentication.
  • C. It has a keepalive of 60 minutes, checking every 5 minutes.
  • D. It uses a 56-bit encryption algorithm.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Dante8880 at Nov. 18, 2022, 10:56 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Dante8880
2 years, 8 months ago
The RSA-encrypted nonces method uses the RSA encryption public key cryptography standard. It requires that each party generate a pseudo-random number (a nonce) and encrypt it in the other party's RSA public key. Authentication occurs when each party decrypts the other party's nonce with a local private key (and other publicly and privately available information) and then uses the decrypted nonce to compute a keyed hash. This system provides for deniable transactions. That is, either side of the exchange can plausibly deny that it took part in the exchange. Cisco IOS software is the only Cisco product that uses RSA-encrypted nonces for IKE authentication. RSA-encrypted nonces use the RSA public key algorithm.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel