- A DH key exchange is an algorith that utilizes asymetic cryptographic keys.
- The DH key exchange is used to establish a shared secret over an insecure medium during an IPSEC phase 1 exchange.
- The DH exchange is suitable susceptible to man-in-the-middle attacks.
- A DH exchange provides Perfect Forward Secrecy (PFS)