Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3735

Details

Module Name
Aruba Mobility Controller Virtual Appliances with ArubaOS FIPS Firmware
Standard
FIPS 140-2
Status
Historical
 Historical Reason
SP 800-56Arev3 transition - replaced by certificate #4630
Overall Level
1
Caveat
When operated in FIPS mode. When installed, initialized and configured as specified in Section 8 of the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Mitigation of Other Attacks: N/A
Module Type
Firmware
Embodiment
Multi-Chip Stand Alone
Description
Aruba's family of Mobility Controllers are network infrastructure devices providing secure, scalable solutions for enterprise Wi-Fi, network security policy enforcement, VPN services, and wireless intrusion detection and prevention. Mobility controllers serve as central points of authentication, encryption, access control, and network coordination for all mobile network services.
Tested Configuration(s)
  • ArubaOS 8.2.2.5-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver with PAA
  • ArubaOS 8.2.2.5-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver without PAA
  • ArubaOS 8.5.0.3-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver with PAA
  • ArubaOS 8.5.0.3-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver without PAA
  • ArubaOS 8.6.0.4-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver with PAA
  • ArubaOS 8.6.0.4-FIPS on ESXi 6.5 running on an HPE ProLiant ML110 Gen10 with an Intel Xeon Silver without PAA
Approved Algorithms
AES Certs. #C413 and #C414
CVL Certs. #C413, #C414, #C1972 and #C1974
DRBG Cert. #C413
ECDSA Certs. #C413 and #C414
HMAC Certs. #C413, #C414, #C1972 and #C1974
KBKDF Cert. #C413
KTS AES Cert. #C413; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Cert. #C413 and HMAC Cert. #C413; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #C414; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Cert. #C414 and HMAC Cert. #C414; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Certs. #C413, #C414 and #C818
SHS Certs. #C413, #C414, #C818, #C1972 and #C1974
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Firmware Versions
ArubaOS 8.2.2.5-FIPS, ArubaOS 8.5.0.3-FIPS and ArubaOS 8.6.0.4-FIPS

Vendor

Aruba, a Hewlett Packard Enterprise company
3333 Scott Blvd
Santa Clara, CA 95054
USA

Kevin Micciche
kevin.micciche@hpe.com
Phone: 404-648-0062

Validation History

Date Type Lab
10/27/2020 Initial LEIDOS CSTL