Which two statements about IKE version 2 are true? (Choose two.)
Which two statements about IKE version 2 are true? (Choose two.)
IKE version 2 (IKEv2) improves over IKE version 1 by streamlining its message exchange process. IKEv2 requires a minimum of four messages to establish a secure tunnel, which is part of its simplified structure compared to IKEv1. Additionally, IKEv2 supports the Extensible Authentication Protocol (EAP), providing flexibility with various authentication methods, including integration with systems like RADIUS for user authentication.
p294 & 295 of Study Guide
CD are correct Study Guide 7.2 Page 294-295
CD is correct. IKEv2 uses a simplified and more efficient exchange process compared to IKEv1. It typically requires only four messages to establish a secure tunnel in its main exchange: IKE_SA_INIT: The first exchange initializes the IKE Security Association (SA) and performs a Diffie-Hellman exchange to generate shared secret keys. IKE_AUTH: The second exchange authenticates the parties and establishes the IPsec SA. IKEv2 supports EAP, which provides a flexible framework for various authentication methods. EAP can be used for user authentication, allowing integration with systems such as RADIUS or other authentication servers, providing a high degree of flexibility in choosing authentication mechanisms.