Home > Integrated Products > VxRail > White Papers > Dell VxRail: Comprehensive Security by Design > VxRail: Compatible standards and certifications
VxRail is a robust and flexible hyperconverged infrastructure that can be configured to enable organizations to satisfy compliance regulations. While some HCI vendors may claim compatibility, Dell is pursuing full certification for the security standards that are important to our customers. Contact your Dell representative to discuss how VxRail meets even the most stringent business and regulatory requirements. The following list describes a few of the standards and certifications that apply to VxRail:
FIPS 140-2 Data-at-Rest Encryption: The Federal Information Processing Standard Publication 140-2 (FIPS PUB 140-2) establishes requirements and standards for the hardware and software components of cryptography modules. FIPS 140-2 is required by the U.S. government and other regulated industries, such as financial and health care institutions that collect, store, transfer, share, and disseminate sensitive but unclassified information
Common Criteria EAL 2+: Common Criteria for Information Technology Security Evaluation is an international standard (ISO/IEC 15408) for system security certification. Common Criteria evaluations are performed on system security products and systems to evaluate the system's security features and provide a confidence level for the product's security features through Security Assurance Requirements (SARs) or Evaluation Assurance Level (EALs). Common Criteria Certification cannot guarantee security, but it can ensure that claims about security attributes are independently verified. PowerEdge servers and vSphere components that are used by VxRail currently hold a full certification.
NIST Cybersecurity Framework: The NIST Framework for Improving Critical Infrastructure is a voluntary guideline that is developed to help organizations improve the cybersecurity, risk management, and resilience of their systems. NIST conferred with a broad range of partners from government, industry, and academia for over a year to build a consensus-based set of sound guidelines and practices. Special Publication 800-131A presents recommendations for encryption key length. (See more information in following sections.)
DISA-STIG: The U.S. Department of Defense (DOD), Defense Information Systems Agency (DISA), develops configuration standards known as Security Technical Implementation Guides (STIGS) as one of the ways to maintain the security of DOD IT infrastructure. These guides provide technical guidance to lock down information systems and/or software that might otherwise be vulnerable to an attack. Dell offers manual and automated steps for configuring VxRail to comply with DoD Information Network (DISA) STIG requirements.
Commercial National Security Algorithm Suite (CNSA): Previously known as Suite B, The Commercial National Security Algorithm Suite (CNSA Suite) will provide new algorithms for those customers who are looking for mitigations to perform, replacing the current Suite B algorithms. The current versions of ESXi and vCenter used with VxRail support CNSA.
Section 508 VPAT: The United States Access Board Section 508 Standards apply to electronic, and information technology procured by the federal government and defines access requirements for people with physical, sensory, or cognitive disabilities. Both the PowerEdge Server and vSphere software components used by VxRail comply with section 508 VPAT.
IPv6: IPv6 is the next generation protocol used by the Internet. In addition to resolving the addressing limitations of IPv4, IPv6 has several security benefits, and many environments are moving toward adopting IPv6. VxRail passed USGv6 interoperability testing for IPv6 in dual stack mode and the higher standard for IPv6 Ready testing.