312-50V10 · Question #940
Internet Protocol Security IPsec is actually a suite pf protocols. Each protocol within the suite provides different functionality. Collective IPsec does everything except.
The correct answer is D. Authenticate. IPsec is a Layer 3 protocol suite providing encryption, payload/header protection, and data integrity, but standalone user or session-level authentication is not a native IPsec function.
Question
Internet Protocol Security IPsec is actually a suite pf protocols. Each protocol within the suite provides different functionality. Collective IPsec does everything except.
Options
- AProtect the payload and the headers
- BEncrypt
- CWork at the Data Link Layer
- DAuthenticate
How the community answered
(35 responses)- A3% (1)
- C3% (1)
- D94% (33)
Why each option
IPsec is a Layer 3 protocol suite providing encryption, payload/header protection, and data integrity, but standalone user or session-level authentication is not a native IPsec function.
IPsec's ESP (Encapsulating Security Payload) protects packet payloads, and AH (Authentication Header) covers IP header fields, making header and payload protection core IPsec capabilities.
IPsec's ESP protocol natively supports symmetric encryption algorithms including AES and 3DES, making encryption a direct, built-in IPsec function.
IPsec operates at OSI Layer 3 (Network Layer) processing IP packets - it does not operate at Layer 2 (Data Link Layer), which handles frames, so this is already something IPsec does not do.
IPsec does not directly authenticate users or sessions - while AH provides packet-level data origin integrity verification, actual endpoint and user authentication is delegated to IKE (Internet Key Exchange) and external credential mechanisms such as certificates or pre-shared keys, so authentication is not an inherent IPsec built-in function.
Concept tested: IPsec protocol suite functions and OSI layer scope
Source: https://www.rfc-editor.org/rfc/rfc4301
Topics
Community Discussion
No community discussion yet for this question.