Your company has a requirement that if security is compromised on phase 1 of a Diffie-Hellman key exchange that a secondary option will strengthen the security on the IPsec tunnel. What should you implement to ensure a higher degree of key material security?
Diffie-Hellman Phase II ESP
PFS Group 5
XAUTH with AAA authentication
Diffie-Hellman Group 5 Phase I
Want to practice for 642-637 - Securing Networks with Cisco Routers and Switches (SECURE) v1.0 ?