Dell PowerConnect W-Series FIPS Dell PowerConnect W-600 Controller Series Secu - Page 23

Cryptographic Key Management Implemented Algorithms FIPS-approved cryptographic algorithms have been implemented in hardware and firmware. Hardware encryption acceleration is provided for bulk cryptographic operations for the following FIPS approved algorithms:  AES (Cert. #762) - CBC; 128,192,256 bits - CCM; 128 bits - GCM; 128, 192, 256 bits, Assoc. Data Len Range: 15 - 30, Payload Length Range: 0 - 32, Nonce Length(s): 13, Tag Length(s): 8  Triple-DES (Cert. #667) - CBC; 192 bits (168 used)/1,2,3 keys keying option  SHS (Cert. #769) - SHA-1, SHA-256, SHA-384, SHA-512 - BYTE oriented  HMAC (Cert. #417) - HMAC-SHA1, HMAC-SHA-56, HMAC -SHA384, and HMA-SHA512 The firmware supports the following cryptographic implemetations. ArubaOS OpenSSL Module implements the following FIPS-approved algorithms:  AES (Cert. #1854)  Triple-DES (Cert. #1201)  SHA (Cert. #1631)  RNG (Cert. #972)  RSA (Cert. #937)  HMAC (Cert. #1101)  ECDSA (#258) ArubaOS Crypto Module implementation supports the following FIPS Approved Algorithms:  AES (Cert. #1850)  Triple-DES (Cert. #1198)  SHA (Cert. #1627)  RNG (Cert. #969)  RSA (Cert. #933)  HMAC (Cert. #1098)  ECDSA (Cert. #257) ArubaOS UBOOT Bootloader implements the following FIPS-approved algorithms:  RSA (Cert. #935)  SHA-1 (Cert. #1629) Non-FIPS Approved Algorithms The cryptographic module implements the following non-approved algorithms that are not permitted for use in the FIPS 140-2 mode of operations:  DES  HMAC-MD5  MD5  RC4 In addition, withing the FIPS Approved mode of operation, the module supports the following allowed key establishment schemes: Aruba 620, 650 and Dell W-620, W-650 | FIPS 140-2 Level 2 Release Supplement FIPS 140-2 Level 2 Features | 21