HPE Adds FIPS 140-2 to BladeSystem Certification List With Corsec Guidance

Corsec would like to congratulate our partner HPE, on successfully completing yet another security certification for the HP BladeSystem, this time on the Onboard Administrator Firmware version 4.40. This is the third certification in recent months for the BladeSystem infrastructure. The Onboard Administrator Firmware successfully completed the Federal Information Processing Standard 140-2 (FIPS 140-2) and details the listing, including all the relevant information on the security target the actual posting by NIST can be found here.

About FIPS 140-2

The FIPS 140-2 standard is a joint effort by the National Institute of Standards and Technology (NIST) in the United States, and the Communications Security Establishment Canada (CSEC), under the Canadian government. The Cryptographic Module Validation Program (CMVP), headed by NIST, provides module and algorithm testing for FIPS 140-2, which applies to Federal agencies using validated cryptographic modules to protect sensitive government data in computer and telecommunication systems. FIPS 140-2 provides stringent third-party assurance of security claims on any product containing cryptography that may be purchased by a government agency.

The FIPS standard, which is mandated by law in the U.S. and very strictly enforced in Canada, is also currently being reviewed by ISO to become an international standard. FIPS 140-2 is gaining worldwide recognition as an important benchmark for third party validations of encryption products of all kinds. FIPS 140-2 validation of the products will provide users with a high degree of security, assurance, and dependability.

More About HPE’s BladeSystem Onboard Administrator Firmware

“The HP BladeSystem Onboard Administrator Firmware is the enclosure management and the firmware base used to support the HP BladeSystem c-Class Enclosure and all the managed devices contained within the enclosure. It is designed to manage all power flow and access permissions for every blade within the enclosure. HP BladeSystem Onboard Administrator Firmware provides a single access point to perform basic management tasks on server blades and switches within the enclosure. It also provides configuration information for the enclosure, enables run-time management and configuration of the enclosure components, and informs administrators of problems within the enclosure through email, or the Insight Display.”

Thank you again to the HPE team and congrats!

Review the larger list of the clients Corsec has helped navigate the process of security certifications.