The A10 Networks ADC must be a FIPS-compliant version.

From A10 Networks ADC ALG Security Technical Implementation Guide

Part of SRG-NET-000512-ALG-000062

Associated with: CCI-000366

SV-82519r1_rule The A10 Networks ADC must be a FIPS-compliant version.

Vulnerability discussion

Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The network element must implement cryptographic modules adhering to the higher standards approved by the federal government since this provides assurance they have been tested and validated.FIPS compliance is mandated for many functions of network devices. The A10 Networks ADC platforms are either FIPS-compliant versions or non-compliant versions. It is necessary to deploy the FIPS-compliant versions of the model(s). FIPS versions are identified by the designation "FIPS" in the stock keeping unit (SKU).

Check content

The following command shows the version of ACOS used and other related information: show version If the output does not include "Platform features: fips", this is a finding.

Fix text

Verify that the units deployed are the FIPS-compliant versions. This is identified by the designation "FIPS" in the stock keeping unit (SKU).

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer