39
5 Cryptographic Algorithms
FIPS-approved cryptographic algorithms have been implemented in hardware and firmware.
The firmware supports the following cryptographic implementations.
ArubaOS OpenSSL AP Module implements the following FIPS-approved algorithms:
o
AES (Cert. #1851)
o
HMAC (Cert. #1099)
o
RNG (Cert. #970)
o
RSA (Cert. #934)
o
SHS (Cert. #1628)
o
Triple-DES (Cert. #1199)
ArubaOS Module implements the following FIPS-approved algorithms:
o
AES (Cert. #1850)
o
HMAC (Cert. #1098)
o
RNG (Cert. #969)
o
RSA (Cert. #933)
o
SHS (Cert. #1627)
o
Triple-DES (Cert. #1198)
ArubaOS Kernel implements the following FIPS-approved algorithms:
o
AES (Cert. #1847)
o
HMAC (Cert. #1097)
o
SHS (Cert. #1625)
o
Triple-DES (Cert. #1197)
ArubaOS UBOOT Bootloader implements the following FIPS-approved algorithms:
o
RSA (Cert. #935)
o
SHS (Cert. #1629)
Aruba Atheros hardware CCM implements the following FIPS-approved algorithms:
o
AES (Cert. #1849)
Non-FIPS Approved Algorithms
The cryptographic module implements the following non-approved algorithms that are not permitted for
use in the FIPS 140-2 mode of operations:
MD5
In addition, within the FIPS Approved mode of operation, the module supports the following allowed key
establishment schemes:
Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption
strength)