Dell Aruba 620 Ek Kılavuz - Sayfa 27
Anahtar Dell Aruba 620 için çevrimiçi göz atın veya pdf Ek Kılavuz indirin. Dell Aruba 620 42 sayfaları. Controllers with arubaos fips firmware non-proprietary security policy fips 140-2 level 2 release supplement
Table 6 CSPs Used in Aruba Mobility Controllers
CSPs
ArubaOS cryptographic
Module RNG seed key
for FIPS compliant 186-
2 General purpose (x-
change Notice); SHA-1
RNG
Self-Tests
The Aruba Mobility Controller performs both power-up and conditional self-tests. In the event any self-test
fails, the switch will enter an error state, log the error, and reboot automatically.
The following self-tests are performed:
Aruba Hardware Known Answer Tests:
AES KAT
AES-CCM KAT
AES-GCM KAT
Triple DES KAT
HMAC (HMAC-SHA1, HMAC-SHA256, HMAC-SHA384 and HMAC-SHA512) KAT
ArubaOS OpenSSL Module:
AES KAT
Triple-DES KAT
RNG KAT
RSA KAT
ECDSA (sign/verify)
SHA (SHA1, SHA256 and SHA384) KAT
HMAC (HMAC-SHA1, HMAC-SHA256 and HMAC-SHA384) KAT
ArubaOS Cryptographic Module
AES KAT
Triple-DES KAT
SHA (SHA1, SHA256, SHA384 and SHA512) KAT
HMAC (HMAC-SHA1, HMAC-SHA256, HMAC-SHA384 and HMAC-SHA512) KAT
RSA (sign/verify)
ECDSA (sign/verify)
FIPS 186-2 RNG KAT
ArubaOS Uboot BootLoader Module
Firmware Integrity Test: RSA 2048-bit Signature Validation
Following Conditional Self-tests are performed in the switch:
Continuous Random Number Generator Test—This test is run upon generation of random data by the
switch's random number generators to detect failure to a constant value. The module stores the first
random number for subsequent comparison, and the module compares the value of the new random
Aruba 620, 650 and Dell W-620, W-650 | FIPS 140-2 Level 2 Release Supplement
CSPs type
Generation
Seed key (64 bytes)
Derived using NON-
FIPS approved HW
RNG (/dev/urandom)
Storage and Zeroization
Stored in plaintext in volatile
memory. Zeroized on reboot.
Use
Seed 186-2 General
purpose (x-change
Notice); SHA-1 RNG
FIPS 140-2 Level 2 Features |
25