U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3931

Details

Module Name
Aruba 9004 Series Gateway with ArubaOS FIPS Firmware
Standard
FIPS 140-2
Status
Active
Sunset Date
5/23/2026
Overall Level
2
Caveat
When operated in FIPS mode with tamper evident labels installed as indicated in the Security Policy. When installed, initialized and configured as specified in Section 13 of the Security Policy
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
Aruba's family of Gateways are network infrastructure devices providing secure, scalable solutions for branch and small campus networks. The Gateways provide network security policy enforcement firewall with Deep Packet Inspection, enterprise Wi-Fi, WLAN, LAN and VPN services including Aruba Dynamic Segmentation, flexible connectivity options, integrated device profiling, and role-based wireless intrusion detection and prevention (IDS/IPS). Gateways serve as central points of authentication, encryption, access control, and network coordination for all mobile network services.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #C1229 and #C1230
CVL Certs. #C1229 and #C1230
DRBG Cert. #C1229
ECDSA Certs. #C1229 and #C1230
HMAC Certs. #C1229 and #C1230
KAS-SSC vendor affirmed
KBKDF Cert. #C1229
KDA vendor affirmed
KTS AES Cert. #C1229 and HMAC Cert. #C1229; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #C1229; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Cert. #C1230 and HMAC Cert. #C1230; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #C1230; key establishment methodology provides 128 or 256 bits of encryption strength
RSA Certs. #C1229, #C1230 and #C1231
SHS Certs. #C1229, #C1230 and #C1231
Allowed Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
[Aruba 9004-USF1 (HPE SKU R1B25A) and Aruba 9004-RWF1 (HPE SKU R1B26A)] with FIPS Kit 4011570-01 (HPE SKU JY894A)
Firmware Versions
ArubaOS 8.6.0.7-FIPS

Vendor

Aruba, a Hewlett Packard Enterprise company
3333 Scott Blvd
Santa Clara, CA 95054
USA

Kevin Micciche
kevin.micciche@hpe.com
Phone: 404-648-0062

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
5/24/2021 Initial LEIDOS CSTL