Dell PowerConnect W-Series FIPS Dell PowerConnect W-6000M3 and W-3000 Controll - Page 21

Table 7 CSPs Used in Aruba Controllers CSPs CSPs type ArubaOS OpenSSL RNG Seed key for FIPS compliant ANSI X9.31, Appendix A2.4 using AES-128 key algorithm Seed key (16 bytes, AES-128 key algorithm) ArubaOS cryptographic Module RNG seed for FIPS compliant 186-2 General purpose (xchange Notice); SHA-1 RNG Seed (64 bytes) ArubaOS cryptographic Module RNG seed key for FIPS compliant 1862 General purpose (xchange Notice); SHA-1 RNG Seed key (64 bytes) Generation Storage and Zeroization Use Derived using NONFIPS approved HW RNG (/dev/urandom) Stored in plaintext in volatile memory only. Zeroized on reboot. Seed ANSI X9.31 RNG Derived using NONFIPS approved HW RNG (/dev/urandom) Stored in plaintext in volatile Seed 186-2 General memory. Zeroized on reboot. purpose (x-change Notice); SHA-1 RNG Derived using NONFIPS approved HW RNG (/dev/urandom) Stored in plaintext in volatile Seed 186-2 General memory. Zeroized on reboot. purpose (x-change Notice); SHA-1 RNG Self-Tests The Aruba Controller performs both power-up and conditional self-tests. In the event any self-test fails, the switch will enter an error state, log the error, and reboot automatically. The following self-tests are performed: ArubaOS OpenSSL Module:  AES KAT  Triple-DES KAT  RNG KAT  RSA KAT  ECDSA (sign/verify)  SHA (SHA1, SHA256 and SHA384) KAT  HMAC (HMAC-SHA1, HMAC-SHA256 and HMAC-SHA384) KAT ArubaOS Cryptographic Module  AES KAT  Triple-DES KAT  SHA (SHA1, SHA256, SHA384 and SHA512) KAT  HMAC (HMAC-SHA1, HMAC-SHA256, HMAC-SHA384 and HMAC-SHA512) KAT  RSA (sign/verify)  ECDSA (sign/verify)  FIPS 186-2 RNG KAT ArubaOS Uboot BootLoader Module  Firmware Integrity Test: RSA 2048-bit Signature Validation Aruba 3000, 6000/M3 and Dell W-3000, W-6000M3 | FIPS 140-2 Level 2 Release Supplement FIPS 140-2 Level 2 Features | 21