The Diffie-Hellman Key Agreement is Cisco's attempt to promote secure key exchange between devices. The Diffie-Hellman process is one of the oldest, most trusted, and most used key exchange solutions.
Diffie-Hellman uses asymmetric keys to obtain a mutually shared secret.
Only asymmetric keys are passed in the clear.
Asymmetric keys cannot be reverse-engineered to crack keys.