Module Name
Aruba AP-203R, AP-203RP, and AP-303H Wireless Access Points
Validation Dates
12/20/2019;03/11/2020
Caveat
When operated in FIPS mode. When installed, initialized and configured as specified in Section 8 of the Security Policy. The tamper evident labels installed as indicated in the security policy
Security Level Exceptions
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Aruba's 802.11ac Wi-Fi access points operate at gigabit speeds, offering extreme performance for mobile devices. In FIPS 140-2 mode, Aruba APs in conjunction with a Mobility Controller support the IEEE 802.11i/WPA2 client standard along with optional Suite B cryptography. Aruba APs also support wireless intrusion detection/prevention services and wireless mesh topologies.
FIPS Algorithms
AES |
Certs. #5265, #5266, #5412, #5928, #5945 and #C1295 |
CVL |
Certs. #1736, #1738, #2149, #2150, #2151, #2155, #2174 and #2175 |
DRBG |
Certs. #2017 and #2481 |
DSA |
Certs. #1365, #1366, #1501 and #1507 |
ECDSA |
Certs. #1374, #1375, #1579 and #1591 |
HMAC |
Certs. #3484, #3485, #3906 and #3918 |
KBKDF |
Certs. #181 and #246 |
KTS |
AES Cert. #5265; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #5265 and HMAC Cert. #3484; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #5266 and HMAC Cert. #3485; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #5928 and HMAC Cert. #3906; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #5945; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #5945 and HMAC Cert. #3918; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Certs. #2395, #2815, #2816, #3107, #3111 and #3121 |
SHS |
Certs. #3633, #4235, #4236, #4682, #4685 and #4697 |
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG
Hardware Versions
[AP-203R-USF1 (HPE SKU JY715A), AP-203R-RWF1 (HPE SKU JY713A), AP-203RP-USF1 (HPE SKU JY723A), AP-203RP-RWF1 (HPE SKU JY721A), AP-303H-USF1 (HPE SKU JY681A) and AP-303H-RWF1 (HPE SKU JY679A)] with FIPS Kit 4011570-01 (HPE SKU JY894A)
Firmware Versions
ArubaOS 8.2.2.5-FIPS and ArubaOS 8.5.0.3-FIPS