Compliance & Certifications

Accelerate digital transformation with networking solutions built and operated according to secure development and regulatory standards.

Supply chain security and compliance concerns holding you back?

Sophisticated cyber threats and evolving regulatory requirements are creating challenges for many organizations.
  • Supply chain attacks—caused by malicious actors infiltrating systems through partners or technology vendors with access to your data and resources—are on the rise
  • New legislation requires some organizations to enhance the cybersecurity and integrity of their supply chain
  • Regional and industry cybersecurity certifications and programs can be complex to navigate and stay ahead of

A trusted secure networking vendor

HPE Aruba Networking’s world-class security capabilities deliver the confidence you need to advance mission- and business-critical digital transformation while ensuring compliance and protecting what matters most.

Products and services

Products and services

HPE Aruba Networking products and services provide built-in tools to support governance, risk, and compliance (GRC) requirements. In addition, products are developed according to software development lifecycle (SDLC) and secure software development framework (SSDF) best practices as required by cybersecurity mandates such as Executive Order 14028, NIST Special Publication 800-218: Secure Software Development Framework, and the Network and Information Security (NIS/NIS2) Directive.

Infrastructure security

Infrastructure security

HPE Aruba Networking enterprise IT teams protect the organization on behalf of team members, customers, and partners. Lab systems and networks are secured according to recognized Zero Trust Security principles and best practices. Teams maintain source code repositories to ensure safe app development. Identity and access management, public key infrastructure operations, and continuous vulnerability scanning and remediation, as well as business continuity planning, support critical business initiatives without disruption.

Read the report
HPE Aruba Networking Threat Labs

HPE Aruba Networking Threat Labs

The HPE Aruba Networking Threat Labs security incident response team (SIRT) plays a vital role in ensuring products are designed to be secure—and that any vulnerabilities are resolved swiftly and completely. HPE Aruba Networking Threat Labs are focused on finding and eliminating security vulnerabilities in products, with the goal of preventing vulnerabilities in the first place.

Learn more

Compliant and certified solutions

HPE Aruba Networking solutions can help your organization achieve compliance and operate within government and industry regulations.

U.S. Federal certifications

HPE Aruba Networking secure networking technologies are trusted by major branches of the U.S. Government, armed forces, and state and local agencies. Solutions can be used in compliance with mandates and programs such as Common Criteria, FIPS-140, DoDIN-APL, USGv6, and FedRAMP.

View products

Regulatory compliance

Your organization relies on the network. That's why HPE Aruba Networking solutions are designed to meet the requirements of regulatory networking standards and industry certifications, ensuring validated reliability and service quality.

Learn more

HPE Aruba Networking secure software development

See how HPE Aruba Networking uses secure development processes to reduce vulnerabilities while optimizing solution costs and availability.

Requirement analysis

Analyze security risks and set high-level security requirements.

Definition

Perform security threat modeling and analysis.

Design

Design to mitigate security risks per requirements. Identify open source and third-party components.

Coding

Reuse secured components. Implement secure coding practices. Review code and use static code analysis tools.

Testing

Test security features by performing security scans, input validation, and penetration testing to achieve a secure configuration.

Deployment

Digitally sign software (code signing) to verify code integrity. Scan for malware and conduct review of open-source code. Deliver software bill of materials (SBOM).

Maintenance

Post to HPE Aruba Networking Support Portal. Patch and maintain releases as needed.

HPE Aruba Networking secure software development

Related resources

FedRAMP reform measures enacted into law

The FY2023 National Defense Authorization Act (NDAA) is now signed legislation that will reform the FEDRAMP cybersecurity authorization program for cloud vendors. FEDRAMP-authorized tools can now be used in any federal agency without additional oversight or verification.

Read the at-a-glance

Implementing Zero Trust architecture and Comply-to-Connect best practices

This document provides the details of how HPE Aruba Networking solutions support the NIST Zero Trust Security framework and the U.S. Department of Defense Comply-to-Connect standard.

Read the paper

Secure mobility solutions for retail transactions

PCI DSS applies to any organization that stores, transmits, and accepts credit or debit cards. HPE Aruba Networking’s integrated wireless intrusion prevention capabilities are a cost-effective way to help your organization comply with PCI requirements globally.

Read the paper

HPE Aruba Networking security solutions for GDPR

GDPR introduces standards for data protection impacting organizations maintaining European personal data, and other governments worldwide are adopting similar approaches. Discover how HPE Aruba Networking solutions can help you prepare to data privacy regulations.

Read the paper

Ready to get started?

Contact us