The Diffie-Hellman Key Agreement is Cisco's attempt to promote secure key exchange between devices. The Diffie-Hellman process is one of the oldest, most trusted, and most used key exchange solutions.

  • Diffie-Hellman uses asymmetric keys to obtain a mutually shared secret.
  • Only asymmetric keys are passed in the clear.
  • Asymmetric keys cannot be reverse-engineered to crack keys.