VxRail is a robust and flexible hyper-converged infrastructure that can be configured to enable organizations to satisfy compliance regulations. While some HCI vendors may claim compatibility, Dell is actively pursuing full certification for the security standards that are important to our customers. Contact your Dell representative to discuss how VxRail meets even the most stringent business and regulatory requirements. The following list describes a few of the standards and certifications that apply to VxRail:
- FIPS 140-2 Data-at-Rest Encryption—The Federal Information Processing Standard Publication 140-2 (FIPS PUB 140-2) establishes requirements and standards for the hardware and software components of cryptography modules. FIPS 140-2 is required by the U.S. government and other regulated industries, such as financial and health care institutions, that collect, store, transfer, share and disseminate sensitive but unclassified information
- Common Criteria EAL 2+—Common Criteria for Information Technology Security Evaluation is an international standard (ISO/IEC 15408) for computer security certification. Common Criteria evaluations are performed on computer security products and systems to evaluate the system's security features and provide a confidence level for the product's security features through Security Assurance Requirements (SARs) or Evaluation Assurance Level (EALs). Common Criteria Certification cannot guarantee security, but it can ensure that claims about security attributes are independently verified. PowerEdge servers and vSphere components used by VxRail currently hold a full certification.
- NIST Cybersecurity Framework—The NIST Framework for Improving Critical Infrastructure is a voluntary guideline developed to help organizations improve the cybersecurity, risk management, and resilience of their systems. NIST conferred with a broad range of partners from government, industry, and academia for over a year to build a consensus-based set of sound guidelines and practices. Special Publication 800-131A presents recommendations for encryption key length.
- NSA Suite B—Suite B is a set of cryptographic algorithms promulgated by the National Security Agency as part of its Cryptographic Modernization Program. The current versions of ESXi and vCenter used with VxRail support NSA Suite B.
- Section 508 VPAT—The United States Access Board Section 508 Standards apply to electronic, and information technology procured by the federal government and defines access requirements for people with physical, sensory, or cognitive disabilities. Both the PowerEdge Server and vSphere software components used by VxRail comply with section 508 VPAT.
- IPv6—IPv6 is the next generation protocol used by the Internet. In addition to resolving the addressing limitations of IPv4, IPv6 has a number of security benefits, and many environments are moving toward adopting IPv6. VxRail passed USGv6 interoperability testing for IPv6 in dual stack mode and the higher standard for IPv6 Ready testing.
- Trusted Platform Module—The Trusted Computing Group defines the specification for the Trusted Platform Module (TPM). TPM 1.2 and 2.0 are optionally available with VxRail. Both are certifications with FIPS 140-2, TCG, and Common Criteria security requirements. vSphere supports TPM1.2 and TPM 2.0. Note that TPM 1.2 is not available on the 15G VxRail systems
