Module Name
Aruba 7XXX Series Controllers with ArubaOS FIPS Firmware
Validation Dates
10/21/2019;03/24/2020
Caveat
When operated in FIPS mode with tamper evident labels installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Aruba's family of Mobility Controllers are network infrastructure devices providing secure, scalable solutions for enterprise Wi-Fi, network security policy enforcement, VPN services, and wireless intrusion detection and prevention. Mobility controllers serve as central points of authentication, encryption, access control, and network coordination for all mobile network services.
FIPS Algorithms
| AES |
Certs. #2477, #2479, #2884, #2900, #3014, #C81, #C82 and #C83 |
| CVL |
Certs. #314 and #326 |
| DRBG |
Cert. #528 |
| DSA |
Certs. #1288, #1289, #1290 and #1510 |
| ECDSA |
Certs. #519, #1206, #1207, #1208 and #1598 |
| HMAC |
Certs. #1520, #1522, #1818, #1835 and #1906 |
| KBKDF |
Cert. #32 |
| KTS |
AES Cert. #2884; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
AES Cert. #2884 and HMAC Cert. #1818; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
AES Cert. #2900 and HMAC Cert. #1835; key establishment methodology provides 128 or 256 bits of encryption strength |
| RSA |
Certs. #1266, #1268, #1518, #1528, #1573 and #2394 |
| SHS |
Certs. #2096, #2098, #2425, #2440, #2522 and #3631 |
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
[Aruba 7005-RWF1 (HPE SKU JW635A), Aruba 7005-USF1 (HPE SKU JW636A), Aruba 7008-RWF1 (HPE SKU JX931A), Aruba 7008-USF1 (HPE SKU JX932A), Aruba 7010-RWF1 (HPE SKU JW702A), Aruba 7010-USF1 (HPE SKU JW703A), Aruba 7024-RWF1 (HPE SKU JW706A), Aruba 7024-USF1 (HPE SKU JW707A), Aruba 7030-RWF1 (HPE SKU JW710A), Aruba 7030-USF1 (HPE SKU JW711A), Aruba 7205-RWF1 (HPE SKU JW739A), Aruba 7205-USF1 (HPE SKU JW740A), Aruba 7210-RWF1 (HPE SKU JW745A), Aruba 7210-USF1 (HPE SKU JW746A), Aruba 7220-RWF1 (HPE SKU JW753A), Aruba 7220-USF1 (HPE SKU JW754A), Aruba 7240-RWF1 (HPE SKU JW761A), Aruba 7240XM-RWF1 (HPE SKU JW829A), Aruba 7240-USF1 (HPE SKU JW762A), Aruba 7240XM-USF1 (HPE SKU JW830A)] with FIPS Kit 4011570-01 (HPE SKU JY894A)
Firmware Versions
ArubaOS 8.2.2.5-FIPS and ArubaOS 8.5.0.3-FIPS
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
