This page was not yet optimized for use on mobile
devices.
Aruba Mobility Controller Virtual Appliances with ArubaOS FIPS Firmware
Certificate #3735
Webpage information
Security policy
Symmetric Algorithms
AES, AES-, RC4, DES, Triple-DES, HMAC, HMAC-SHA-256, HMAC-SHA-512Asymmetric Algorithms
RSA 2048, ECDH, ECDSA, Diffie-Hellman, DH, DSAHash functions
SHA-1, SHA1, SHA-256, SHA-384, SHA-512, SHA256, SHA384, SHA512, MD5Schemes
Key ExchangeProtocols
SSHv2, SSH, SSL, TLS, TLSv1.0, TLSv1.2, IKEv2, IKEv1, IKE, IPsec, VPNRandomness
DRBGLibraries
OpenSSLElliptic Curves
P-256, P-384Block cipher modes
ECB, CBC, CTR, GCM, CCMSecurity level
Level 1, level 1, level 2Standards
FIPS 140-2, FIPS 197, FIPS 198-1, FIPS 186-2, FIPS 186-4, FIPS 180-4, SP 800-38A, SP 800-38D, SP 800-90A, SP 800-108, SP 800-67, SP 800-38F, SP 800-52, SP 800-133, PKCS1, PKCS#1, RFC 5246, RFC 7296, X.509File metadata
| Title | Microsoft Word - VMC_Security_Policy.doc |
|---|---|
| Author | tsengjk |
| Creation date | D:20201020093707-04'00' |
| Modification date | D:20201020093716-04'00' |
| Pages | 39 |
| Creator | Nuance PDF Create |
| Producer | Nuance PDF Create |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 3735,
"dgst": "cf6f8c91b5f482ba",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"SHS#C818",
"CVL#C413",
"RSA#C413",
"KTS#C414",
"AES#C414",
"HMAC#C1972",
"RSA#C414",
"CVL#C1972",
"HMAC#C413",
"SHS#C1972",
"SHS#C414",
"DRBG#C413",
"HMAC#C414",
"SHS#C1974",
"AES#C413",
"CVL#C414",
"CVL#C1974",
"SHS#C413",
"KBKDF#C413",
"RSA#C818",
"ECDSA#C413",
"HMAC#C1974",
"ECDSA#C414"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"8.5.0.3",
"8.2.2.5",
"8.6.0.4"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDH": {
"ECDH": 4
},
"ECDSA": {
"ECDSA": 17
}
},
"FF": {
"DH": {
"DH": 6,
"Diffie-Hellman": 25
},
"DSA": {
"DSA": 1
}
},
"RSA": {
"RSA 2048": 4
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 5
},
"CCM": {
"CCM": 1
},
"CTR": {
"CTR": 4
},
"ECB": {
"ECB": 1
},
"GCM": {
"GCM": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 4
}
},
"crypto_protocol": {
"IKE": {
"IKE": 18,
"IKEv1": 14,
"IKEv2": 17
},
"IPsec": {
"IPsec": 7
},
"SSH": {
"SSH": 16,
"SSHv2": 14
},
"TLS": {
"SSL": {
"SSL": 1
},
"TLS": {
"TLS": 41,
"TLSv1.0": 1,
"TLSv1.2": 1
}
},
"VPN": {
"VPN": 7
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 22,
"P-384": 14
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES CTR 256": 1,
"AES-CBC2": 1,
"AES-CBC4": 1,
"AES-GCM1": 1,
"AES-GCM3": 1,
"Certificate RSA": 1,
"HMAC (384": 1,
"HMAC SHA-1": 1,
"HMAC- SHA-256": 3,
"HMAC- SHA-512": 1,
"HMAC- SHA1-96": 1,
"HMAC- SHA256": 1,
"HMAC- SHA384": 1,
"HMAC-SHA- 128": 2,
"HMAC-SHA- 384": 4,
"HMAC-SHA-1": 9,
"HMAC-SHA-1 (160": 1,
"HMAC-SHA-256": 6,
"HMAC-SHA-512": 4,
"HMAC-SHA-512 128": 2,
"HMAC-SHA-5125": 2,
"HMAC-SHA1": 12,
"HMAC-SHA256": 4,
"HMAC-SHA384": 4,
"HMAC-SHA512": 4,
"PKCS#1": 2,
"PKCS1": 8,
"RSA 2048": 4,
"RSA PKCS#1": 2,
"SHA- 1": 1,
"SHA- 384": 6,
"SHA-1": 15,
"SHA-1 160": 2,
"SHA-256": 19,
"SHA-384": 2,
"SHA-512": 5,
"SHA1": 2,
"SHA1-96": 1,
"SHA2-256": 1,
"SHA256": 3,
"SHA384": 3,
"SHA512": 2
}
},
"fips_security_level": {
"Level": {
"Level 1": 49,
"level 1": 2,
"level 2": 1
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 4
}
},
"SHA": {
"SHA1": {
"SHA-1": 17,
"SHA1": 2
},
"SHA2": {
"SHA-256": 19,
"SHA-384": 2,
"SHA-512": 5,
"SHA256": 3,
"SHA384": 3,
"SHA512": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 25
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 66,
"FIPS 180-4": 5,
"FIPS 186-2": 2,
"FIPS 186-4": 3,
"FIPS 197": 3,
"FIPS 198-1": 4
},
"NIST": {
"SP 800-108": 1,
"SP 800-133": 1,
"SP 800-38A": 3,
"SP 800-38D": 1,
"SP 800-38F": 4,
"SP 800-52": 1,
"SP 800-67": 2,
"SP 800-90A": 1
},
"PKCS": {
"PKCS#1": 2,
"PKCS1": 4
},
"RFC": {
"RFC 5246": 1,
"RFC 7296": 2
},
"X509": {
"X.509": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 18,
"AES-": 2
},
"RC": {
"RC4": 2
}
},
"DES": {
"3DES": {
"Triple-DES": 11
},
"DES": {
"DES": 5
}
},
"constructions": {
"MAC": {
"HMAC": 10,
"HMAC-SHA-256": 3,
"HMAC-SHA-512": 3
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "tsengjk",
"/CreationDate": "D:20201020093707-04\u002700\u0027",
"/Creator": "Nuance PDF Create",
"/ModDate": "D:20201020093716-04\u002700\u0027",
"/Producer": "Nuance PDF Create",
"/Title": "Microsoft Word - VMC_Security_Policy.doc",
"pdf_file_size_bytes": 366376,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 39
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "4b907074a30c5bc57d7c19ece417311d4ca22930de352c5d38cebf31ec09adb1",
"policy_txt_hash": "a70d552edfd2078d115b0abee55fe9488a4a6286970dbcccdb353c8ef78f8a3d"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode. When installed, initialized and configured as specified in Section 8 of the Security Policy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/October 2020_021120_0702_signed.pdf",
"date_sunset": null,
"description": "Aruba\u0027s family of Mobility Controllers are network infrastructure devices providing secure, scalable solutions for enterprise Wi-Fi, network security policy enforcement, VPN services, and wireless intrusion detection and prevention. Mobility controllers serve as central points of authentication, encryption, access control, and network coordination for all mobile network services.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 2",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "ArubaOS 8.2.2.5-FIPS, ArubaOS 8.5.0.3-FIPS and ArubaOS 8.6.0.4-FIPS",
"historical_reason": "SP 800-56Arev3 transition - replaced by certificate #4630",
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Aruba Mobility Controller Virtual Appliances with ArubaOS FIPS Firmware",
"module_type": "Firmware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": [
"ArubaOS 8.2.2.5-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver with PAA",
"ArubaOS 8.2.2.5-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver without PAA",
"ArubaOS 8.5.0.3-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver with PAA",
"ArubaOS 8.5.0.3-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver without PAA",
"ArubaOS 8.6.0.4-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver with PAA",
"ArubaOS 8.6.0.4-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver without PAA"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2020-10-27",
"lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
"validation_type": "Initial"
}
],
"vendor": "Aruba, a Hewlett Packard Enterprise company",
"vendor_url": "http://www.arubanetworks.com"
}
}