Dell PowerConnect W-Series FIPS Dell PowerConnect W-600 Controller Series Secu - Page 27

Table 6 CSPs Used in Aruba Mobility Controllers CSPs CSPs type Generation Storage and Zeroization Use ArubaOS cryptographic Module RNG seed key for FIPS compliant 1862 General purpose (xchange Notice); SHA-1 RNG Seed key (64 bytes) Derived using NONFIPS approved HW RNG (/dev/urandom) Stored in plaintext in volatile Seed 186-2 General memory. Zeroized on reboot. purpose (x-change Notice); SHA-1 RNG Self-Tests The Aruba Mobility Controller performs both power-up and conditional self-tests. In the event any self-test fails, the switch will enter an error state, log the error, and reboot automatically. The following self-tests are performed: Aruba Hardware Known Answer Tests:  AES KAT  AES-CCM KAT  AES-GCM KAT  Triple DES KAT  HMAC (HMAC-SHA1, HMAC-SHA256, HMAC-SHA384 and HMAC-SHA512) KAT ArubaOS OpenSSL Module:  AES KAT  Triple-DES KAT  RNG KAT  RSA KAT  ECDSA (sign/verify)  SHA (SHA1, SHA256 and SHA384) KAT  HMAC (HMAC-SHA1, HMAC-SHA256 and HMAC-SHA384) KAT ArubaOS Cryptographic Module  AES KAT  Triple-DES KAT  SHA (SHA1, SHA256, SHA384 and SHA512) KAT  HMAC (HMAC-SHA1, HMAC-SHA256, HMAC-SHA384 and HMAC-SHA512) KAT  RSA (sign/verify)  ECDSA (sign/verify)  FIPS 186-2 RNG KAT ArubaOS Uboot BootLoader Module  Firmware Integrity Test: RSA 2048-bit Signature Validation Following Conditional Self-tests are performed in the switch:  Continuous Random Number Generator Test-This test is run upon generation of random data by the switch's random number generators to detect failure to a constant value. The module stores the first random number for subsequent comparison, and the module compares the value of the new random Aruba 620, 650 and Dell W-620, W-650 | FIPS 140-2 Level 2 Release Supplement FIPS 140-2 Level 2 Features | 25