This page was not yet optimized for use on mobile devices.

HPE Aruba Networking EdgeConnect SD-WAN Cryptographic Library

Certificate #4541

Webpage information

Status	active
Validation dates	22.06.2023 , 21.10.2024
Sunset date	21-09-2026
Standard	FIPS 140-2
Security level	1
Type	Software
Embodiment	Multi-Chip Stand Alone
Caveat	When operated in FIPS mode. No assurance of the minimum strength of generated keys
Exceptions	Physical Security: N/A Mitigation of Other Attacks: N/A
Description	EdgeConnect appliances deliver predictable application performance and high availability over any combination of transport services. Orchestrated, application-driven security policies enable direct internet breakout for trusted SaaS, web, and applications, and secure connection to cloud hosted security services.
Tested configurations	Fedora Core 6 (2.6.38 Kernel) running on Silver Peak EC-XS with an Intel® Atom C3558 (Denverton) with PAA Fedora Core 6 (2.6.38 Kernel) running on Silver Peak EC-XS with an Intel® Atom C3558 (Denverton) without PAA Yocto 2.7.3 Warrior (4.19.87 Kernel) running on Silver Peak EC-XS with an Intel® Atom C3558 (Denverton) with PAA Yocto 2.7.3 Warrior (4.19.87 Kernel) running on Silver Peak EC-XS with an Intel® Atom C3558 (Denverton) without PAA (single-user mode)
Vendor	HPE Aruba Networking
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Certificate

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, TDES

Asymmetric Algorithms

DSA

Hash functions

SHA-2

Libraries

OpenSSL

Block cipher modes

GCM, CCM, XTS

Standards

FIPS 140-2

File metadata

Title	Microsoft Word - Security Policy Level-1 (HPE Aruba Networking_24.07.31_V1.80) (ID 515)_Redline-Updated Branding
Author	Khan, Gillian
Creation date	D:20240828145551-04'00'
Modification date	D:20240828145551-04'00'
Pages	30
Producer	Microsoft: Print To PDF

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state was updated.

The following values were inserted: {'policy_json_hash': None}.

The following properties were deleted: ['policy_convert_garbage'].
08.09.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated.
12.11.2024

The certificate data changed.
Certificate changed

The web extraction data was updated.

The module_name property was set to HPE Aruba Networking EdgeConnect SD-WAN Cryptographic Library.

The validation_history property was updated, with the [[1, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2024-10-21', 'validation_type': 'Update', 'lab': 'ÆGISOLVE'}]] values inserted.

The vendor_url property was set to http://www.arubanetworks.com.

The vendor property was set to HPE Aruba Networking.

The description property was set to EdgeConnect appliances deliver predictable application performance and high availability over any combination of transport services. Orchestrated, application-driven security policies enable direct internet breakout for trusted SaaS, web, and applications, and secure connection to cloud hosted security services..

The sw_versions property was set to Crypto Library 2020 Version 1.0, Crypto Library 2021 version 1.1.

The PDF extraction data was updated.

The keywords property was updated, with the {'fips_security_level': {}, 'fips_certlike': {'__update__': {'Certlike': {'__update__': {'SHA-2': 1}, '__delete__': ['HMAC-SHA-1', 'HMAC-SHA-256', 'HMAC-SHA-512', 'HMAC-SHA224', 'HMAC-SHA256', 'HMAC-SHA384', 'HMAC-SHA512', 'HMAC-SHA1', 'SHA-1', 'SHA-256', 'SHA-512', 'SHA-224', 'SHA-384', 'SHA1', 'SHA224', 'SHA256', 'SHA384', 'SHA512', 'PKCS1', 'PKCS#1', 'PKCS#5', 'PKCS#12', 'AES 128, 192', 'AES-128, 192', 'AES- 256', 'AES-CBC (128', 'AES-128']}}}, 'vendor': {}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES': 1}, '__delete__': ['AES-128', 'AES-']}}}, 'DES': {'__update__': {'3DES': {'__update__': {'TDES': 2}, '__delete__': ['TDEA']}}, '__delete__': ['DES']}}, '__delete__': ['constructions']}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DSA': {'__update__': {'DSA': 1}}}, '__delete__': ['DH']}}, '__delete__': ['ECC']}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA2': {'__update__': {'SHA-2': 1}, '__delete__': ['SHA-224', 'SHA-384', 'SHA-512', 'SHA224', 'SHA256', 'SHA384', 'SHA512', 'SHA-256']}}, '__delete__': ['SHA1']}}, '__delete__': ['MD']}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {'__update__': {'GCM': {'__update__': {'GCM': 1}}, 'CCM': {'__update__': {'CCM': 1}}}, '__delete__': ['ECB', 'CBC', 'CTR', 'CFB', 'OFB']}, 'ecc_curve': {}, 'crypto_library': {'__delete__': ['Generic']}, 'standard_id': {'__update__': {'FIPS': {'__update__': {'FIPS 140-2': 2}, '__delete__': ['FIPS PUB 140-2', 'FIPS 197', 'FIPS 198-1', 'FIPS 180-4', 'FIPS 186-4', 'FIPS 198', 'FIPS186-2', 'FIPS186-3']}}, '__delete__': ['NIST', 'PKCS']}} data.

The policy_metadata property was updated, with the {'pdf_file_size_bytes': 6250221, '/Producer': 'Microsoft: Print To PDF', '/CreationDate': "D:20240828145551-04'00'", '/ModDate': "D:20240828145551-04'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}} data.

The computed heuristics were updated.

The algorithms property was updated, with the {'_type': 'Set', 'elements': ['SHS#A5249', 'AES#A5249', 'HMAC#A5249', 'CVL#A5249', 'RSA#A5249', 'DRBG#A5249', 'AES#A5248']} values added.

The state was updated.

The policy_pdf_hash property was set to c6682aa6da0284613c48861f7d2da5fa3fda8288e8a08f0ee74e211fede3a4e4.

The policy_txt_hash property was set to d409febbccaa434496516cf61c3fec04befa63575bba653748cc6144c358ed80.
31.07.2023

The certificate data changed.
Certificate changed

The web extraction data was updated.

The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf.
26.06.2023

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4541,
  "dgst": "00f7f5c26f42ca17",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "CVL#A1957",
        "HMAC#C2126",
        "DRBG#A1957",
        "HMAC#A1957",
        "DRBG#A5249",
        "RSA#C2161",
        "CVL#C2213",
        "CVL#C2135",
        "AES#A5249",
        "SHS#A1957",
        "SHS#A5249",
        "CVL#C2123",
        "RSA#A5249",
        "AES#A1957",
        "HMAC#A5249",
        "AES#A1958",
        "AES#C2122",
        "HMAC#C2211",
        "RSA#C2215",
        "SHS#C2208",
        "AES#A5248",
        "CVL#A5249",
        "CVL#C2210",
        "DRBG#C2212",
        "DRBG#C2136",
        "SHS#C2121",
        "RSA#A1957",
        "AES#C2214",
        "AES#C2209",
        "AES#C2163"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "FF": {
          "DSA": {
            "DSA": 1
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CCM": {
          "CCM": 1
        },
        "GCM": {
          "GCM": 1
        },
        "XTS": {
          "XTS": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 2
        }
      },
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "SHA-2": 1
        }
      },
      "fips_security_level": {},
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-2": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 1
          }
        },
        "DES": {
          "3DES": {
            "TDES": 2
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Khan, Gillian",
      "/CreationDate": "D:20240828145551-04\u002700\u0027",
      "/ModDate": "D:20240828145551-04\u002700\u0027",
      "/Producer": "Microsoft: Print To PDF",
      "/Title": "Microsoft Word - Security Policy Level-1 (HPE Aruba Networking_24.07.31_V1.80) (ID 515)_Redline-Updated Branding",
      "pdf_file_size_bytes": 6250221,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 30
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "c6682aa6da0284613c48861f7d2da5fa3fda8288e8a08f0ee74e211fede3a4e4",
    "policy_txt_hash": "d409febbccaa434496516cf61c3fec04befa63575bba653748cc6144c358ed80"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode. No assurance of the minimum strength of generated keys",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/June 2023_050723_0638 (1).pdf",
    "date_sunset": "2026-09-21",
    "description": "EdgeConnect appliances deliver predictable application performance and high availability over any combination of transport services. Orchestrated, application-driven security policies enable direct internet breakout for trusted SaaS, web, and applications, and secure connection to cloud hosted security services.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Physical Security: N/A",
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": null,
    "historical_reason": null,
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "HPE Aruba Networking EdgeConnect SD-WAN Cryptographic Library",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": "Crypto Library 2020 Version 1.0, Crypto Library 2021 version 1.1",
    "tested_conf": [
      "Fedora Core 6 (2.6.38 Kernel) running on Silver Peak EC-XS with an Intel\u00ae Atom C3558 (Denverton) with PAA",
      "Fedora Core 6 (2.6.38 Kernel) running on Silver Peak EC-XS with an Intel\u00ae Atom C3558 (Denverton) without PAA",
      "Yocto 2.7.3 Warrior (4.19.87 Kernel) running on Silver Peak EC-XS with an Intel\u00ae Atom C3558 (Denverton) with PAA",
      "Yocto 2.7.3 Warrior (4.19.87 Kernel) running on Silver Peak EC-XS with an Intel\u00ae Atom C3558 (Denverton) without PAA (single-user mode)"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-06-22",
        "lab": "AEGISOLVE, Inc.",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2024-10-21",
        "lab": "AEGISOLVE, Inc.",
        "validation_type": "Update"
      }
    ],
    "vendor": "HPE Aruba Networking",
    "vendor_url": "http://www.arubanetworks.com"
  }
}

Sections

HPE Aruba Networking EdgeConnect SD-WAN Cryptographic Library

Certificate #4541

Webpage information

Security policy

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Libraries

Block cipher modes

Standards

File metadata

Heuristics

References

Updates Feed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

New certificate

Raw data

Sections

HPE Aruba Networking EdgeConnect SD-WAN Cryptographic Library

Certificate #4541

Webpage information

Security policy

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Libraries

Block cipher modes

Other

Standards

File metadata

Heuristics

References

Updates Feed

Raw data

Toggle raw data