Secure connectivity using site-to-site VPNs
These questions are derived from the Self Test Software Practice Test for Cisco exam #642-522 – Securing Networks with PIX and ASA.
Objective Sequence: Configure a security appliance to provide secure connectivity using site-to-site VPNs
SubObjective Sequence: Differentiate between the types of encryption
Multiple Answer, Multiple Choice
Which encryption algorithms are supported on a Cisco security appliance ? (Choose three.)
The encryption algorithms supported on a Cisco security appliance are DES, AES, and AES-192.
The encryption algorithm is a mathematical algorithm used to encrypt or decrypt the data.
The following message encryption algorithms are supported on a Cisco security appliance:
- DES – Data Encryption Standard (56 bits)
- 3DES – Triple Data Encryption Standard (168 bits)
- AES – Advanced Encryption Standard (128 bits)
- AES-192 – Advanced Encryption Standard (192 bits)
- AES-256 – Advanced Encryption Standard (256 bits)
The options, SHA-1 and MD5, are incorrect. Secure Hash Algorithm 1 (SHA-1 ) and Message Digest 5 (MD5) are hash algorithms used for data integrity on a Cisco security appliance.
CCSP SNPA Official Exam Certification Guide, Third Edition, Chapter 13, pp. 334-335.