This page was not yet optimized for use on mobile devices.
Hewlett Packard Enterprise OpenSSL 3 Provider
Certificate #4876
Webpage information
Security policy
Symmetric Algorithms
AES, AES-, CAST, HMAC, KMAC, CMACAsymmetric Algorithms
RSA 2048, ECDH, ECDSA, ECC, DHHash functions
SHA-1, SHA-512, SHA2, SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHA3, PBKDF, PBKDF2Schemes
Key agreement, AEADProtocols
SSH, TLS v1.2, TLS v1.3, TLS, TLS 1.2, TLS 1.3, VPNRandomness
DRBG, RBGLibraries
OpenSSLElliptic Curves
P-224, P-256, P-384, P-521Block cipher modes
ECB, CBC, CTR, CFB, OFB, GCM, CCM, XTSTrusted Execution Environments
PSP, SSCVendor
MicrosoftSecurity level
Level 1Side-channel analysis
side-channel, timing attacksStandards
FIPS 140-3, FIPS186-4, FIPS186, FIPS 186-4, SP 800-52, SP 800-56A, RFC7627, RFC 7627, RFC 5288, RFC 8446, ISO/IEC 19790:2012, ISO/IEC 24759:2017File metadata
| Author | Hawes, David J. (Fed) |
|---|---|
| Creation date | D:20241105064337-05'00' |
| Modification date | D:20241105064337-05'00' |
| Pages | 44 |
| Creator | Microsoft® Word for Microsoft 365 |
| Producer | Microsoft® Word for Microsoft 365 |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates
-
20.10.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The validation_history property was updated.
-
08.09.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The validation_history property was updated.
-
24.02.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The exceptions property was updated.
-
18.11.2024 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name Hewlett Packard Enterprise OpenSSL 3 Provider was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4876,
"dgst": "a053262db2c019c6",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"AES-CTRA4803",
"AES-KWPA4803",
"HMAC-SHA3-224A4803",
"KDF KMAC Sp800-108r1A4803",
"ECDSA KeyGen (FIPS186-4)A4803",
"SHAKE-128A4803",
"AES-CBCA4803",
"KAS-ECC CDH-Component SP800-56Ar3A4803",
"PBKDFA4803",
"AES-CCMA4803",
"RSA SigVer (FIPS186-4)A4803",
"Safe Primes Key GenerationA4803",
"TLS v1.3 KDFA4803",
"SHA3-384A4803",
"AES-ECBA4803",
"KDA TwoStep SP800-56Cr2A4803",
"AES-OFBA4803",
"HMAC-SHA2-224A4803",
"RSA SigGen (FIPS186-4)A4803",
"HMAC-SHA2-512A4803",
"AES-KWA4803",
"KMAC-128A4803",
"AES-XTS Testing Revision 2.0A4803",
"Counter DRBGA4803",
"ECDSA SigGen (FIPS186-4)A4803",
"Safe Primes Key VerificationA4803",
"KDA HKDF SP800-56Cr2A4803",
"RSA Signature PrimitiveA4803",
"KDF SP800-108A4803",
"HMAC-SHA3-256A4803",
"SHA2-256A4803",
"SHA3-512A4803",
"RSA KeyGen (FIPS186-4)A4803",
"SHA2-512A4803",
"AES-CMACA4803",
"HMAC-SHA3-384A4803",
"AES-CFB128A4803",
"TLS v1.2 KDF RFC7627A4803",
"AES-GCMA4803",
"SHA2-224A4803",
"KDA OneStep SP800-56Cr2A4803",
"KAS-ECC-SSC Sp800-56Ar3A4803",
"SHA2-384A4803",
"HMAC-SHA3-512A4803",
"SHA3-256A4803",
"HMAC-SHA2-256A4803",
"AES-GMACA4803",
"KDF SSHA4803",
"KMAC-256A4803",
"ECDSA SigVer (FIPS186-4)A4803",
"ECDSA KeyVer (FIPS186-4)A4803",
"SHA3-224A4803",
"KAS-FFC-SSC Sp800-56Ar3A4803",
"AES-CFB8A4803",
"SHAKE-256A4803",
"HMAC-SHA2-384A4803"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"3"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 1
},
"ECDSA": {
"ECDSA": 37
}
},
"FF": {
"DH": {
"DH": 44
}
},
"RSA": {
"RSA 2048": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 7
},
"CCM": {
"CCM": 4
},
"CFB": {
"CFB": 4
},
"CTR": {
"CTR": 7
},
"ECB": {
"ECB": 7
},
"GCM": {
"GCM": 8
},
"OFB": {
"OFB": 6
},
"XTS": {
"XTS": 6
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 17
}
},
"crypto_protocol": {
"SSH": {
"SSH": 8
},
"TLS": {
"TLS": {
"TLS": 2,
"TLS 1.2": 3,
"TLS 1.3": 2,
"TLS v1.2": 7,
"TLS v1.3": 8
}
},
"VPN": {
"VPN": 1
}
},
"crypto_scheme": {
"AEAD": {
"AEAD": 1
},
"KA": {
"Key agreement": 2
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-224": 4,
"P-256": 4,
"P-384": 2,
"P-521": 2
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES 128,192": 11,
"AES 128,256": 1,
"DRBG 128": 2,
"DRBG 256": 3,
"HMAC 224": 4,
"HMAC 256": 4,
"HMAC 384": 4,
"HMAC 512": 4,
"HMAC-SHA- 256": 2,
"RSA 2048": 1,
"SHA- 256": 1,
"SHA- 3": 1,
"SHA-1": 1,
"SHA-512": 1,
"SHA2": 1,
"SHA2-224": 4,
"SHA2-256": 7,
"SHA2-384": 3,
"SHA2-512": 3,
"SHA3": 2,
"SHA3- 224": 1,
"SHA3-224": 3,
"SHA3-256": 4,
"SHA3-384": 3,
"SHA3-512": 3
}
},
"fips_security_level": {
"Level": {
"Level 1": 7
}
},
"hash_function": {
"PBKDF": {
"PBKDF": 18,
"PBKDF2": 1
},
"SHA": {
"SHA1": {
"SHA-1": 1
},
"SHA2": {
"SHA-512": 1,
"SHA2": 5
},
"SHA3": {
"SHA3": 2,
"SHA3-224": 3,
"SHA3-256": 4,
"SHA3-384": 3,
"SHA3-512": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 32
},
"RNG": {
"RBG": 2
}
},
"side_channel_analysis": {
"SCA": {
"side-channel": 1,
"timing attacks": 2
}
},
"standard_id": {
"FIPS": {
"FIPS 140-3": 14,
"FIPS 186-4": 6,
"FIPS186": 7,
"FIPS186-4": 7
},
"ISO": {
"ISO/IEC 19790:2012": 1,
"ISO/IEC 24759:2017": 1
},
"NIST": {
"SP 800-52": 1,
"SP 800-56A": 1
},
"RFC": {
"RFC 5288": 1,
"RFC 7627": 2,
"RFC 8446": 1,
"RFC7627": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 37,
"AES-": 1
},
"CAST": {
"CAST": 18
}
},
"constructions": {
"MAC": {
"CMAC": 5,
"HMAC": 25,
"KMAC": 13
}
}
},
"tee_name": {
"AMD": {
"PSP": 1
},
"IBM": {
"SSC": 9
}
},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 3
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Hawes, David J. (Fed)",
"/CreationDate": "D:20241105064337-05\u002700\u0027",
"/Creator": "Microsoft\u00ae Word for Microsoft 365",
"/ModDate": "D:20241105064337-05\u002700\u0027",
"/Producer": "Microsoft\u00ae Word for Microsoft 365",
"pdf_file_size_bytes": 529853,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.arubanetworks.com/",
"https://www.arubanetworks.com/open_source",
"https://csrc.nist.gov/projects/cryptographic-module-validation-program",
"https://www.hpe.com/",
"https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 44
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "8971ff7936c0af953bfd484b281170540c78c6efdc21ca53e34597aebc6411b6",
"policy_txt_hash": "0e87ba3929aa336832ecc0aa4e6f1933c53bdcf19b15203f8c87cc4cc25b4c03"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "Interim validation. When configured as specified in Section 11.2 of the Security Policy. No assurance of the minimum strength of generated SSPs",
"certificate_pdf_url": null,
"date_sunset": "2026-11-12",
"description": "The Hewlett Packard Enterprise OpenSSL 3 Provider Module is one of the components within a variety of Hewlett Packard Enterprise and HPE Aruba products, including the Aruba Mobility Conductors, Mobility Controllers/Gateways, and controller-managed Aruba Access Points (APs) running the ArubaOS operating system running on the Aruba hardware-based equipment or Aruba virtual appliances.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A"
],
"fw_versions": "N/A",
"historical_reason": null,
"hw_versions": "N/A",
"level": 1,
"mentioned_certs": {},
"module_name": "Hewlett Packard Enterprise OpenSSL 3 Provider",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": "3.1.4a",
"tested_conf": [
"Ubuntu 20.04 on VMWare ESXi 6.7 running on HPE ProLiant ML 110 Gen10 on Intel Xeon Silver 4110 (Skylake) with PAA",
"Ubuntu 20.04 on VMWare ESXi 6.7 running on HPE ProLiant ML 110 Gen10 on Intel Xeon Silver 4110 (Skylake) without PAA"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-11-13",
"lab": "Lightship Security, Inc.",
"validation_type": "Initial"
}
],
"vendor": "Hewlett Packard Enterprise",
"vendor_url": "http://www.hpe.com/us/en/networking"
}
}