Table of Contents
Advertisement
CSP
IKEv1/IKEv2 Diffie-
Hellman Private key
IKEv1/IKEv2 Diffie-
Hellman shared secret
ArubaOS OpenSSL RNG
Seed for FIPS compliant
ANSI X9.31, Appendix
A2.4 using AES-128 Key
algorithm
ArubaOS OpenSSL RNG
Seed key for FIPS
compliant ANSI X9.31,
Appendix A2.4 using
AES-128 Key algorithm
ArubaOS Cryptographic
Module RNG Seed for
FIPS compliant 186-2
General Purpose (X
change Notice); SHA-1
RNG
ArubaOS Cryptographic
Module RNG Seed key for
FIPS compliant 186-2
General Purpose (X
change Notice); SHA-1
RNG
CSP TYPE
GENERATION
1024-bit
Generated internally
Diffie-
during IKEv1/IKEv2
Hellman
negotiation
private key
128 bit Octet
Generated internally
during IKEv1/IKEv2
negotiation
Seed (16
Derived using NON-
Bytes)
FIPS approved HW RNG
(/dev/urandom)
Seed key (16
Derived using NON-
bytes, AES-
FIPS approved HW RNG
128 Key
(/dev/urandom)
algorithm)
Seed (64
Derived using NON-
bytes)
FIPS approved HW RNG
(/dev/urandom)
Seed Key
Derived using NON-
(64 bytes)
FIPS approved HW RNG
(/dev/urandom)
41
STORAGE
And
USE
ZEROIZATI
ON
Stored in
Used in
plaintext in
establishing
volatile
the session key
memory;
for IPSec
zeroized when
session is
closed or
system is
powered off
Stored in
IKEv1/IKEv2
plaintext in
payload
volatile
integrity
memory;
verification
zeroized when
session is
closed or
system is
powered off
Stored in
Seed ANSI
plaintext in
X9.31 RNG
volatile
memory only;
zeroized on
reboot
Stored in
Seed ANSI
plaintext in
X9.31 RNG
volatile
memory only;
zeroized on
reboot
Stored in
Seed 186-2
plaintext in
General
volatile
Purpose (X
memory only;
change
zeroized on
Notice); SHA-
reboot
1 RNG
Stored in
Seed 186-2
plaintext in
General
volatile
Purpose (X
memory only;
change
zeroized on
Notice); SHA-
reboot
1 RNG
Advertisement
Table of Contents
