Use statistical analysis to eliminate the most common encryption keys.

Use a keyspace large enough that it takes too much money and too much time to conduct a successful attack.

Use an algorithm that requires the attacker to have both ciphertext and plaintext to conduct a successful attack.

Use frequency analysis to ensure that the most popular letters used in the language are not used in the cipher message.

Words of the message are substituted based on a predetermined pattern

Letters of the message are rearranged based on a predetermined pattern

Letters of the message are rearranged randomly.

Letters of the message are replaced by another letter that is a set number of places away in the alphabet.

complexity of the hashing algorithm

the use of 3DES over AES

secrecy of the keys

secrecy of the algorithm

authentication of peers

detection of interesting traffic

negotiation of the IPsec SA policy

negotiation of the ISAKMP policy

RSA

Diffie-Hellman

DES

AES

It establishes the set of encryption and hashing algorithms used to secure the data sent through an IPsec tunnel.

It defines the default ISAKMP policy list used to establish the IKE Phase 1 tunnel.

It establishes the criteria to force the IKE Phase 1 negotiations to begin.

It indicates that IKE will be used to establish the IPsec tunnel for protecting the traffic.

PKI

MD5

AES

RSA