This page was not yet optimized for use on mobile devices.
Aruba 7XXX Series Controllers with ArubaOS FIPS Firmware
Certificate #4634
Webpage information ?
Document information ?
Security policy
Symmetric Algorithms
AES, RC4, DES, Triple-DES, HMAC, HMAC-SHA-256, HMAC-SHA-512, HMAC-SHA-384Asymmetric Algorithms
RSA 2048, ECDH, ECDSA, ECC, Diffie-Hellman, DH, DSAHash functions
SHA-1, SHA-256, SHA-384, SHA-512, MD5Schemes
Key Exchange, Key AgreementProtocols
SSH, SSL, TLS, TLSv1.2, IKEv2, IKEv1, IKE, VPNRandomness
DRBGLibraries
OpenSSLElliptic Curves
P-256, P-384Block cipher modes
ECB, CBC, CTR, OFB, GCM, CCMVendor
BroadcomSecurity level
Level 2, Level 1, level 2Standards
FIPS 140-2, FIPS 197, FIPS 198-1, FIPS 180-4, FIPS 186-4, FIPS 186-2, FIPS 140, SP 800-38A, SP 800-38D, SP 800-67, SP 800-133, SP 800-90A, SP 800-56A, SP 800-135, SP 800-56C, SP 800-108, SP 800-38F, SP 800-52, PKCS1, PKCS#1, RFC 5246, RFC 7296, X.509File metadata
| Creation date: | D:20231010134848-04'00' |
|---|---|
| Modification date: | D:20231010134848-04'00' |
| Pages: | 64 |
References
Heuristics ?
No heuristics are available for this certificate.
References ?
No references are available for this certificate.
Updates ?
-
06.11.2023 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The certificate_pdf_url property was set to
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/October 2023_011123_0711.pdf.
- The certificate_pdf_url property was set to
-
01.11.2023 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4634,
"dgst": "704d7ecf2545962e",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"KDA#A2690",
"DSA#A2689",
"RSA#A2689",
"SHS#A2690",
"CVL#A2690",
"KAS-SSC#A2690",
"AES#A2689",
"KTS#A2689",
"KAS#A2690",
"AES#2477",
"KAS-SSC#A2689",
"SHS#2098",
"AES#A2690",
"ECDSA#A2689",
"HMAC#1906",
"RSA#1573",
"SHS#A2688",
"RSA#A2690",
"SHS#2522",
"AES#3014",
"HMAC#A2689",
"AES#2479",
"CVL#A2689",
"SHS#2096",
"DRBG#A2690",
"RSA#1266",
"SHS#A2689",
"ECDSA#A2690",
"HMAC#1520",
"DSA#A2690",
"HMAC#A2690",
"HMAC#1522",
"RSA#A2688",
"KBKDF#A2690",
"RSA#1268"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"8.10.0.2"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 2
},
"ECDSA": {
"ECDSA": 16
}
},
"FF": {
"DH": {
"DH": 4,
"Diffie-Hellman": 17
},
"DSA": {
"DSA": 5
}
},
"RSA": {
"RSA 2048": 2
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 7
},
"CCM": {
"CCM": 2
},
"CTR": {
"CTR": 5
},
"ECB": {
"ECB": 2
},
"GCM": {
"GCM": 7
},
"OFB": {
"OFB": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 6
}
},
"crypto_protocol": {
"IKE": {
"IKE": 17,
"IKEv1": 14,
"IKEv2": 17
},
"SSH": {
"SSH": 13
},
"TLS": {
"SSL": {
"SSL": 1
},
"TLS": {
"TLS": 42,
"TLSv1.2": 1
}
},
"VPN": {
"VPN": 6
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 5
},
"KEX": {
"Key Exchange": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 24,
"P-384": 20
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES CTR 256": 1,
"AES-CBC12": 1,
"AES-CBC6": 1,
"AES-GCM11": 1,
"AES-GCM5": 1,
"CVL3": 1,
"CVL7": 1,
"Certificate RSA": 1,
"DRBG2": 1,
"HMAC (384": 1,
"HMAC- SHA-384": 5,
"HMAC- SHA1-96": 1,
"HMAC-SHA- 256": 10,
"HMAC-SHA- 512": 2,
"HMAC-SHA- 512 128": 2,
"HMAC-SHA- 51213": 2,
"HMAC-SHA- 5128": 2,
"HMAC-SHA-1": 11,
"HMAC-SHA-1 (160": 1,
"HMAC-SHA-256": 6,
"HMAC-SHA-384": 2,
"HMAC-SHA-512": 6,
"HMAC-SHA-512 112": 2,
"HMAC-SHA1": 12,
"HMAC-SHA256": 4,
"HMAC-SHA384": 4,
"HMAC-SHA512": 2,
"PKCS#1": 3,
"PKCS1": 10,
"RSA 2048": 2,
"RSA PKCS#1": 3,
"SHA- 256": 9,
"SHA-1": 19,
"SHA-256": 9,
"SHA-384": 16,
"SHA-512": 6,
"SHA-5129": 1,
"SHA1-96": 1,
"SHA2-256": 8,
"SHA2-384": 1,
"SHA2-512": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 1,
"Level 2": 75,
"level 2": 1
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 4
}
},
"SHA": {
"SHA1": {
"SHA-1": 19
},
"SHA2": {
"SHA-256": 9,
"SHA-384": 16,
"SHA-512": 6
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 27
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140": 1,
"FIPS 140-2": 92,
"FIPS 180-4": 4,
"FIPS 186-2": 2,
"FIPS 186-4": 6,
"FIPS 197": 5,
"FIPS 198-1": 3
},
"NIST": {
"SP 800-108": 1,
"SP 800-133": 2,
"SP 800-135": 2,
"SP 800-38A": 5,
"SP 800-38D": 1,
"SP 800-38F": 4,
"SP 800-52": 1,
"SP 800-56A": 9,
"SP 800-56C": 3,
"SP 800-67": 3,
"SP 800-90A": 2
},
"PKCS": {
"PKCS#1": 3,
"PKCS1": 5
},
"RFC": {
"RFC 5246": 1,
"RFC 7296": 2
},
"X509": {
"X.509": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 18
},
"RC": {
"RC4": 2
}
},
"DES": {
"3DES": {
"Triple-DES": 12
},
"DES": {
"DES": 3
}
},
"constructions": {
"MAC": {
"HMAC": 10,
"HMAC-SHA-256": 3,
"HMAC-SHA-384": 1,
"HMAC-SHA-512": 4
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Broadcom": {
"Broadcom": 4
}
},
"vulnerability": {}
},
"policy_metadata": {
"/CreationDate": "D:20231010134848-04\u002700\u0027",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_ActionId": "d363c269-3c7b-4579-ab0b-372b5377d088",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_ContentBits": "0",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Enabled": "true",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Method": "Privileged",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Name": "Unrestricted",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_SetDate": "2023-09-12T13:40:04Z",
"/MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_SiteId": "b64da4ac-e800-4cfc-8931-e607f720a1b8",
"/ModDate": "D:20231010134848-04\u002700\u0027",
"pdf_file_size_bytes": 1382066,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://urldefense.com/v3/__https:/csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=35300__;!!NpxR!mIa2Bc3MOCQYgIqZdnlHt_SAAgkzoy56jN4Paqz-3DMgGvrFTfQ5aMilAprrIoQJ2UdBdcBEa-HBMFEYK_Ouo69k1U4WeZk$",
"https://csrc.nist.gov/Projects/cryptographic-module-validation-program/Validated-Modules/Search",
"https://csrc.nist.gov/projects/cryptographic-module-validation-program",
"https://urldefense.com/v3/__https:/csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=35299__;!!NpxR!mIa2Bc3MOCQYgIqZdnlHt_SAAgkzoy56jN4Paqz-3DMgGvrFTfQ5aMilAprrIoQJ2UdBdcBEa-HBMFEYK_Ouo69kl7dKpbY$",
"http://www.arubanetworks.com/products/arubaos/policy-enforcement-firewall/",
"https://urldefense.com/v3/__https:/csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=35301__;!!NpxR!mIa2Bc3MOCQYgIqZdnlHt_SAAgkzoy56jN4Paqz-3DMgGvrFTfQ5aMilAprrIoQJ2UdBdcBEa-HBMFEYK_Ouo69kpUm2UDM$",
"http://www.arubanetworks.com/",
"http://www.arubanetworks.com/technology/discover-802-11ac/",
"https://asp.arubanetworks.com/downloads;fileTypes=DOCUMENT;products=Aruba%20Mobility%20Controllers%20%28AOS%29"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 64
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "4d1e5958cb0e5f70b5856c1c3426c04a3d10f4d9afc1e2f867163b334ebcf64e",
"policy_txt_hash": "40a8724d9b48a96a8995525d1eccd57660e5ef9a2f4c4903b59d5688cd084155"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode with tamper evident labels installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/October 2023_011123_0711.pdf",
"date_sunset": "2024-10-20",
"description": "Aruba\u0027s family of Mobility Controllers are network infrastructure devices providing secure, scalable solutions for enterprise Wi-Fi, network security policy enforcement, VPN services, and wireless intrusion detection and prevention. Mobility controllers serve as central points of authentication, encryption, access control, and network coordination for all mobile network services.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "ArubaOS 8.10.0.2-FIPS",
"historical_reason": null,
"hw_versions": "[Aruba 7005-RWF1 (HPE SKU JW635A), Aruba 7005-USF1 (HPE SKU JW636A), Aruba 7008-RWF1 (HPE SKU JX931A), Aruba 7008-USF1 (HPE SKU JX932A), Aruba 7010-RWF1 (HPE SKU JW702A), Aruba 7010-USF1 (HPE SKU JW703A), Aruba 7024-RWF1 (HPE SKU JW706A), Aruba 7024-USF1 (HPE SKU JW707A), Aruba 7030-RWF1 (HPE SKU JW710A), Aruba 7030-USF1 (HPE SKU JW711A), Aruba 7205-RWF1 (HPE SKU JW739A), Aruba 7205-USF1 (HPE SKU JW740A), Aruba 7210-RWF1 (HPE SKU JW745A), Aruba 7210-USF1 (HPE SKU JW746A), Aruba 7220-RWF1 (HPE SKU JW753A), Aruba 7220-USF1 (HPE SKU JW754A), Aruba 7240-RWF1 (HPE SKU JW761A), Aruba 7240XM-RWF1 (HPE SKU JW829A), Aruba 7240-USF1 (HPE SKU JW762A), Aruba 7240XM-USF1 (HPE SKU JW830A)] with FIPS Kit 4011570-01 (HPE SKU JY894A)",
"level": 2,
"mentioned_certs": {},
"module_name": "Aruba 7XXX Series Controllers with ArubaOS FIPS Firmware",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2023-10-11",
"lab": "LEIDOS CSTL",
"validation_type": "Initial"
}
],
"vendor": "Aruba, a Hewlett Packard Enterprise company",
"vendor_url": "http://www.arubanetworks.com"
}
}