Cryptographic Module Validation Program CMVP

Certificate #3069

Details

Module Name
Aruba IAP-214, IAP-215, IAP-224, IAP-225, IAP-274, IAP-275, IAP-277, RAP-108 and RAP-109 Wireless Access Points with Aruba Instant Firmware
Standard
FIPS 140-2
Status
Active
Sunset Date
11/26/2022
Validation Dates
11/27/2017
Overall Level
2
Caveat
When operated only on the specific platforms specified on the certificate in FIPS mode with tamper evident labels installed as indicated in the Security Policy. The protocols TLS, SNMP and IKEv2 shall not be used when operated in FIPS mode
Module Type
Firmware
Embodiment
Multi-Chip Stand Alone
Description
Aruba's 802.11ac Wi-Fi access points operate at gigabit speeds, offering extreme performance for mobile devices. In FIPS 140-2 mode, Aruba APs in conjunction with a Mobility Controller support the IEEE 802.11i/WPA2 client standard along with optional Suite B cryptography. Aruba APs also support wireless intrusion detection/prevention services and wireless mesh topologies.
Tested Configuration(s)
  • IAP-214 (Hardware Versions: IAP-214-USF1 [HPE SKU JW225A], IAP-214-RWF1 [HPE SKU JW224A]), IAP-215 (Hardware Versions: IAP-215-USF1 [HPE SKU JW231A], IAP-215-RWF1 [HPE SKU JW230A]), IAP-224 (Hardware Versions: IAP-224-USF1 [HPE SKU JW237A], IAP-224-RWF1 [HPE SKU JW235A]), IAP-225 (Hardware Versions: IAP-225-USF1 [HPE SKU JW243A], IAP-225-RWF1 [HPE SKU JW241A]), IAP-274 (Hardware Versions: IAP-274-USF1 [HPE SKU JW252A], IAP-274-RWF1 [HPE SKU JW251A]), IAP-275 (Hardware Versions: IAP-275-USF1 [HPE SKU JW257A], IAP-275-RWF1 [HPE SKU JW256A]), IAP-277 (Hardware Versions: IAP-277-USF1 [HPE SKU JW263A], IAP-277-RWF1 [HPE SKU JW262A]), RAP-108 (Hardware Versions: RAP-108-USF1 [HPE SKU JW269A], RAP-108-F1 [HPE SKU JW268A]), RAP-109 (Hardware Versions: RAP-109-USF1 [HPE SKU JW275A], RAP-109-F1 [HPE SKU JW274A])
FIPS Algorithms
AES Certs. #1648, #1649, #2450 and #3944
CVL Cert. #1210
DRBG Cert. #1149
HMAC Cert. #2569
KBKDF Certs. #134 and #135
KTS AES Cert. #3944 and HMAC Cert. #2569; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Certs. #2015, #2417 and #2419
SHS Certs. #3254, #3654 and #3657
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Firmware Versions
ArubaInstant 6.5.1.0-4.3.1

Vendor

Aruba, a Hewlett Packard Enterprise company
3333 Scott Blvd
Santa Clara, CA 95054
USA

Steve Weingart
steve.weingart@hpe.com
Phone: 512-319-2480

Lab

LEIDOS CSTL
NVLAP Code: 200427-0