Dell Dell W- 620 Дополнительное руководство - Страница 23
Просмотреть онлайн или скачать pdf Дополнительное руководство для Переключатель Dell Dell W- 620. Dell Dell W- 620 42 страницы. Controllers with arubaos fips firmware non-proprietary security policy fips 140-2 level 2 release supplement
Cryptographic Key Management
Implemented Algorithms
FIPS-approved cryptographic algorithms have been implemented in hardware and firmware.
Hardware encryption acceleration is provided for bulk cryptographic operations for the following FIPS
approved algorithms:
AES (Cert. #762) - CBC; 128,192,256 bits - CCM; 128 bits - GCM; 128, 192, 256 bits, Assoc. Data Len Range:
15 - 30, Payload Length Range: 0 - 32, Nonce Length(s): 13, Tag Length(s): 8
Triple-DES (Cert. #667) - CBC; 192 bits (168 used)/1,2,3 keys keying option
SHS (Cert. #769) - SHA-1, SHA-256, SHA-384, SHA-512 - BYTE oriented
HMAC (Cert. #417) - HMAC-SHA1, HMAC-SHA-56, HMAC -SHA384, and HMA-SHA512
The firmware supports the following cryptographic implemetations.
ArubaOS OpenSSL Module implements the following FIPS-approved algorithms:
AES (Cert. #1854)
Triple-DES (Cert. #1201)
SHA (Cert. #1631)
RNG (Cert. #972)
RSA (Cert. #937)
HMAC (Cert. #1101)
ECDSA (#258)
ArubaOS Crypto Module implementation supports the following FIPS Approved Algorithms:
AES (Cert. #1850)
Triple-DES (Cert. #1198)
SHA (Cert. #1627)
RNG (Cert. #969)
RSA (Cert. #933)
HMAC (Cert. #1098)
ECDSA (Cert. #257)
ArubaOS UBOOT Bootloader implements the following FIPS-approved algorithms:
RSA (Cert. #935)
SHA-1 (Cert. #1629)
Non-FIPS Approved Algorithms
The cryptographic module implements the following non-approved algorithms that are not permitted for
use in the FIPS 140-2 mode of operations:
DES
HMAC-MD5
MD5
RC4
In addition, withing the FIPS Approved mode of operation, the module supports the following allowed key
establishment schemes:
Aruba 620, 650 and Dell W-620, W-650 | FIPS 140-2 Level 2 Release Supplement
FIPS 140-2 Level 2 Features |
21