This page was not yet optimized for use on mobile
devices.
Aruba 7XXX Series Controllers with ArubaOS FIPS Firmware
Certificate #3552
Webpage information
Security policy
Symmetric Algorithms
AES, RC4, DES, Triple-DES, HMAC, HMAC-SHA-256, HMAC-SHA-512Asymmetric Algorithms
RSA 2048, ECDH, ECDSA, Diffie-Hellman, DH, DSAHash functions
SHA-1, SHA1, SHA-256, SHA-384, SHA-512, SHA256, SHA384, SHA512, MD5Schemes
Key ExchangeProtocols
SSHv2, SSH, SSL, TLS, TLSv1.2, IKEv2, IKEv1, IKE, VPNRandomness
DRBGLibraries
OpenSSLElliptic Curves
P-256, P-384Block cipher modes
ECB, CBC, CTR, OFB, GCM, CCMVendor
BroadcomSecurity level
Level 2, Level 1, level 2Standards
FIPS 140-2, FIPS 197, FIPS 198-1, FIPS 180-4, FIPS 186-4, FIPS 186-2, FIPS 140, SP 800-38A, SP 800-38D, SP 800-67, SP 800-90A, SP 800-108, SP 800-38F, SP 800-52, SP 800-133, PKCS1, PKCS#1, RFC 5246, RFC 7296, X.509File metadata
| Title | Microsoft Word - ArubaOS8.6-1SUB-70XX-72XX-Security-Policy.doc |
|---|---|
| Author | tsengjk |
| Creation date | D:20210504144842-04'00' |
| Modification date | D:20210504144856-04'00' |
| Pages | 61 |
| Creator | Nuance PDF Create |
| Producer | Nuance PDF Create |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 3552,
"dgst": "996aa130712ec702",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"HMAC#1835",
"HMAC#1522",
"AES#2900",
"SHS#2098",
"HMAC#1906",
"SHS#2096",
"KTS#C83",
"AES#C81",
"SHS#2522",
"AES#2884",
"AES#2477",
"HMAC#C1972",
"AES#2479",
"CVL#C1972",
"HMAC#1520",
"SHS#C1972",
"CVL#326",
"ECDSA#1208",
"AES#C83",
"SHS#2425",
"AES#C82",
"RSA#1528",
"RSA#1573",
"ECDSA#1207",
"CVL#314",
"ECDSA#1598",
"AES#3014",
"DRBG#528",
"RSA#1268",
"RSA#1266",
"SHS#2440",
"SHS#3631",
"HMAC#1818",
"ECDSA#519",
"KBKDF#32",
"RSA#1518",
"ECDSA#1206",
"RSA#2394"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"8.5.0.3",
"8.2.2.5",
"8.6.0.7"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDH": {
"ECDH": 4
},
"ECDSA": {
"ECDSA": 17
}
},
"FF": {
"DH": {
"DH": 6,
"Diffie-Hellman": 21
},
"DSA": {
"DSA": 1
}
},
"RSA": {
"RSA 2048": 2
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 7
},
"CCM": {
"CCM": 2
},
"CTR": {
"CTR": 5
},
"ECB": {
"ECB": 2
},
"GCM": {
"GCM": 8
},
"OFB": {
"OFB": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 6
}
},
"crypto_protocol": {
"IKE": {
"IKE": 17,
"IKEv1": 13,
"IKEv2": 17
},
"SSH": {
"SSH": 14,
"SSHv2": 16
},
"TLS": {
"SSL": {
"SSL": 1
},
"TLS": {
"TLS": 41,
"TLSv1.2": 1
}
},
"VPN": {
"VPN": 6
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 22,
"P-384": 20
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES 2884": 2,
"AES 2900": 1,
"AES CTR 256": 1,
"AES-CBC11": 1,
"AES-CBC5": 1,
"AES-GCM10": 1,
"AES-GCM4": 1,
"CVL2": 1,
"CVL6": 1,
"Certificate RSA": 1,
"HMAC (384": 1,
"HMAC 1818": 2,
"HMAC 1835": 2,
"HMAC- SHA-384": 5,
"HMAC- SHA1-96": 1,
"HMAC-SHA- 256": 10,
"HMAC-SHA- 512": 2,
"HMAC-SHA- 512 128": 2,
"HMAC-SHA- 51212": 2,
"HMAC-SHA- 5127": 2,
"HMAC-SHA-1": 5,
"HMAC-SHA-1 (160": 1,
"HMAC-SHA-256": 6,
"HMAC-SHA-512": 4,
"HMAC-SHA-512 112": 2,
"HMAC-SHA1": 18,
"HMAC-SHA256": 8,
"HMAC-SHA384": 8,
"HMAC-SHA512": 6,
"PKCS#1": 3,
"PKCS1": 10,
"RSA 2048": 2,
"RSA PKCS#1": 3,
"SHA- 256": 9,
"SHA-1": 16,
"SHA-1 160": 1,
"SHA-256": 10,
"SHA-384": 15,
"SHA-512": 5,
"SHA-5128": 1,
"SHA1": 2,
"SHA1-96": 1,
"SHA256": 2,
"SHA384": 2,
"SHA512": 2
}
},
"fips_security_level": {
"Level": {
"Level 1": 1,
"Level 2": 72,
"level 2": 1
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 3
}
},
"SHA": {
"SHA1": {
"SHA-1": 17,
"SHA1": 2
},
"SHA2": {
"SHA-256": 10,
"SHA-384": 15,
"SHA-512": 5,
"SHA256": 2,
"SHA384": 2,
"SHA512": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 26
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140": 1,
"FIPS 140-2": 88,
"FIPS 180-4": 5,
"FIPS 186-2": 2,
"FIPS 186-4": 4,
"FIPS 197": 5,
"FIPS 198-1": 4
},
"NIST": {
"SP 800-108": 1,
"SP 800-133": 1,
"SP 800-38A": 5,
"SP 800-38D": 1,
"SP 800-38F": 4,
"SP 800-52": 1,
"SP 800-67": 3,
"SP 800-90A": 1
},
"PKCS": {
"PKCS#1": 3,
"PKCS1": 5
},
"RFC": {
"RFC 5246": 1,
"RFC 7296": 2
},
"X509": {
"X.509": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 22
},
"RC": {
"RC4": 1
}
},
"DES": {
"3DES": {
"Triple-DES": 14
},
"DES": {
"DES": 2
}
},
"constructions": {
"MAC": {
"HMAC": 10,
"HMAC-SHA-256": 3,
"HMAC-SHA-512": 3
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Broadcom": {
"Broadcom": 4
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "tsengjk",
"/CreationDate": "D:20210504144842-04\u002700\u0027",
"/Creator": "Nuance PDF Create",
"/ModDate": "D:20210504144856-04\u002700\u0027",
"/Producer": "Nuance PDF Create",
"/Title": "Microsoft Word - ArubaOS8.6-1SUB-70XX-72XX-Security-Policy.doc",
"pdf_file_size_bytes": 1688094,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 61
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "dd35d3cd6a9d647899193ee5326fe3bf8e9eee536e58d9fc3caf51c9240a1ee0",
"policy_txt_hash": "748d1c24428a8931f7340f41b7ee680cc24a5e9d863b53cca70f5c81f4677de9"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode with tamper evident labels installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPSConsolidatedOct2019 .pdf",
"date_sunset": null,
"description": "Aruba\u0027s family of Mobility Controllers are network infrastructure devices providing secure, scalable solutions for enterprise Wi-Fi, network security policy enforcement, VPN services, and wireless intrusion detection and prevention. Mobility controllers serve as central points of authentication, encryption, access control, and network coordination for all mobile network services.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "ArubaOS 8.2.2.5-FIPS; ArubaOS 8.5.0.3-FIPS and ArubaOS 8.6.0.7-FIPS",
"historical_reason": "SP 800-56Arev3 transition - replaced by certificate #4634",
"hw_versions": "[Aruba 7005-RWF1 (HPE SKU JW635A), Aruba 7005-USF1 (HPE SKU JW636A), Aruba 7008-RWF1 (HPE SKU JX931A), Aruba 7008-USF1 (HPE SKU JX932A), Aruba 7010-RWF1 (HPE SKU JW702A), Aruba 7010-USF1 (HPE SKU JW703A), Aruba 7024-RWF1 (HPE SKU JW706A), Aruba 7024-USF1 (HPE SKU JW707A), Aruba 7030-RWF1 (HPE SKU JW710A), Aruba 7030-USF1 (HPE SKU JW711A), Aruba 7205-RWF1 (HPE SKU JW739A), Aruba 7205-USF1 (HPE SKU JW740A), Aruba 7210-RWF1 (HPE SKU JW745A), Aruba 7210-USF1 (HPE SKU JW746A), Aruba 7220-RWF1 (HPE SKU JW753A), Aruba 7220-USF1 (HPE SKU JW754A), Aruba 7240-RWF1 (HPE SKU JW761A), Aruba 7240XM-RWF1 (HPE SKU JW829A), Aruba 7240-USF1 (HPE SKU JW762A), Aruba 7240XM-USF1 (HPE SKU JW830A)] with FIPS Kit 4011570-01 (HPE SKU JY894A)",
"level": 2,
"mentioned_certs": {},
"module_name": "Aruba 7XXX Series Controllers with ArubaOS FIPS Firmware",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2019-10-21",
"lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2020-03-24",
"lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2021-05-17",
"lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
"validation_type": "Update"
}
],
"vendor": "Aruba, a Hewlett Packard Enterprise company",
"vendor_url": "http://www.arubanetworks.com"
}
}