- Advanced Encryption Standard (AES) Block Encryption with key sizes of 128 or 256 bits used with Galois/Counter Mode (GCM)
- Elliptic-Curve Digital Signature Algorithm (ECDSA)
- Elliptic-Curve Diffie-Hellman (ECDH) key agreement
- Secure Hash Algorithm (SHA) using SHA-256 and SHA-384
- Extensible Authentication Protocol (EAP) offload
- Based on IEEE 802.1X framework with support for all secure EAP methods
- Supports the use of X. 509v3 certificates using ECDSA
- Elevate unclassified networks to classified status utilizing the same hardware
- Utilize classified-capable solutions when building new unclassified networks
- Rapidly deploy secure access locally and remotely using a single architecture
- Support multiple services on the same network infrastructure for both classified and unclassified access
- Unified security framework
- NSA certified
- ACR deployment scenarios
The ArubaOS Advanced Cryptography (ACR) module brings military-grade Suite B cryptography to Aruba Mobility Controllers, enabling user mobility and secure access to networks that handle controlled unclassified, confidential and classified information.
Approved by the U.S. National Security Agency (NSA), Suite B is a set of publicly available algorithms that serve as the cryptographic base for unclassified information and most classified information. Unlike the previous generation of cryptosystems, known as Suite A or Type I, Suite B improves performance, eliminates unwieldy workflows and strict handling requirements, allows interoperability, and supports commercially available mobile devices - all at a fraction of the cost of Suite A.
The NSA has authorized the use of Suite B to facilitate the sharing of sensitive and classified information among multiple departments as well as to bring secure mobility to commercial laptops, tablets and smartphones.
The ArubaOS ACR module is a licensed option on any Aruba Mobility Controller, allowing governments and organizations that handle sensitive or confidential information to securely and cost effectively utilize commercial mobile technology for classifiedgrade networks.