In IKE, what is negotiated during Phase 2?

Prepare for the Alcatel Quiz. Review multiple choice questions and flashcards, with hints and explanations to sharpen your knowledge. Get exam-ready!

Multiple Choice

In IKE, what is negotiated during Phase 2?

Explanation:
During IKE, Phase 2 is focused on setting up the data-protection for the VPN by negotiating IPsec SAs, known as Child SAs. The secure channel established in Phase 1 (the IKE SA) is used to protect this negotiation, and in Phase 2 the peers agree on the specific parameters that will protect the traffic between them: the encryption and integrity algorithms, keys, lifetimes, and the traffic selectors for the tunnel. In short, Phase 2 defines and establishes the actual IPsec SAs that will guard the data flow, which is why this choice is the best fit. Phase 1’s job was to authenticate and create a secure control channel, not to set up the data-plane protections.

During IKE, Phase 2 is focused on setting up the data-protection for the VPN by negotiating IPsec SAs, known as Child SAs. The secure channel established in Phase 1 (the IKE SA) is used to protect this negotiation, and in Phase 2 the peers agree on the specific parameters that will protect the traffic between them: the encryption and integrity algorithms, keys, lifetimes, and the traffic selectors for the tunnel. In short, Phase 2 defines and establishes the actual IPsec SAs that will guard the data flow, which is why this choice is the best fit. Phase 1’s job was to authenticate and create a secure control channel, not to set up the data-plane protections.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy