U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

Cryptographic Module Validation Program CMVP

Certificate #3899

Details

Module Name
Aruba IAP-303H, IAP-304, IAP-305, IAP-314, IAP-315, IAP-324, IAP-325, IAP-334, and IAP-335 Wireless Access Points with Aruba Instant Firmware
Standard
FIPS 140-2
Status
Active
Sunset Date
4/18/2026
Validation Dates
04/19/2021
Overall Level
2
Caveat
When operated in FIPS mode. When installed, initialized and configured as specified in Section 13 of the Security Policy. The tamper evident labels installed as indicated in the security policy. The module generates cryptographic keys whose strengths are modified by available entropy
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
Aruba's Wi-Fi Instant Access Points operate at gigabit speeds, offering extreme performance for mobile devices. In FIPS 140-2 mode, Aruba IAPs support the IEEE 802.11i/WPA2 client standard. Aruba APs also support wireless intrusion detection/prevention services and wireless mesh topologies. The built-in GUI provides access to live monitoring and traffic visibility, while network configuration provides full customization of SSIDs, roles, guest access, and more.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #5412, #C564 and #C565
CVL Certs. #C564 and #C565
DRBG Cert. #C565
HMAC Certs. #C564 and #C565
KBKDF Cert. #C565
KTS AES Cert. #C564 and HMAC Cert. #C564; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Cert. #C565 and HMAC Cert. #C565; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Certs. #C563, #C564 and #C565
SHS Certs. #C563, #C564 and #C565
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
[IAP-303H-US TAA (HPE SKU JY681A), IAP-304-US TAA (HPE SKU JX944A), IAP-305-US TAA (HPE SKU JX950A), IAP-314-US TAA (HPE SKU JW808A), IAP-315-US TAA (HPE SKU JW814A), IAP-324-US TAA (HPE SKU JW322A), IAP-325-US TAA (HPE SKU JW328A), IAP-334-US TAA (HPE SKU JW820A), IAP-335-US TAA (HPE SKU JW826A)] with FIPS Kit 4011570-01 (HPE SKU JY894A)
Firmware Versions
ArubaInstant 8.5.0.12

Vendor

Aruba, a Hewlett Packard Enterprise company
3333 Scott Blvd
Santa Clara, CA 95054
USA

Kevin Micciche
kevin.micciche@hpe.com
Phone: 404-648-0062

Lab

LEIDOS CSTL
NVLAP Code: 200427-0