Home » Cisco » 210-260 v.2 » Which two next-generation encryption algorithms does Cisco recommend?
Which two next-generation encryption algorithms does Cisco recommend? (Choose two.)
A. AES
B. 3DES
C. DES
D. MD5
E. DH-1024
F. SHA-384
Correct Answer: AF
Explanation/Reference:
Answer: A, F
The following table shows the relative security level provided by the recommended and NGE algorithms. The security level is the relative strength of an algorithm. An algorithm with a security level of x bits is stronger than one of y bits if x > y. If an algorithm has a security level of x bits, the relative effort it would take to “beat” the algorithm is of the same magnitude of breaking a secure x-bit symmetric key algorithm (without reduction or other attacks). The 128-bit security level is for sensitive information and the 192-bit level is for information of higher importance.
Reference: http://www.cisco.com/c/en/us/about/security-center/next-generation-cryptography.html
how ?
Cisco Next-Generation Encryption (NGE) evolves traditional encryption technology to meet today’s increasing security needs while improving scalability and efficiency. The following figure shows a list of technologies that are included in NGE.
https://www.cisco.com/assets/sol/dc/images/nge_tech.jpg
It asks for Next Generation Encryption (NGE aka Suite B) recommended algorithms. NGE is a set of algorithms for all purposes – encryption, hashing etc. – not only for encryption.
Correct answer is AF.
true
AES -> Encryption
3DES -> Encryption
DES -> Encryption
MD5 -> Hashing
DH-1024 -> Key Exchange
SHA-384 -> Hashing
DES is not secure
Correct answers:
A. AES
B. 3DES
Hello, great job, just to mention that this question ask for encryption algorithms. Bases on the link you sharing. Correct answers should be, A and C (DES is for encryption, status Avoid as AES).