Module Name
Juniper Networks SRX5400, SRX5600, and SRX5800 Services Gateways
Validation Dates
06/19/2017
Caveat
When operated in FIPS mode and with the tamper-evident seals installed as indicated in the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks SRX Series Services Gateways provide the essential capabilities necessary to connect, secure, and manage enterprise and service provider networks, from the smallest sites to the largest headquarters and data centers.
FIPS Algorithms
| AES |
Certs. #4054, #4055, #4056, #4070 and #4329 |
| CVL |
Certs. #880 and #926 |
| DRBG |
Certs. #1216, #1399 and #1401 |
| DSA |
Certs. #1096, #1103 and #1104 |
| ECDSA |
Certs. #909, #916 and #917 |
| HMAC |
Certs. #2646, #2647, #2648, #2657 and #2867 |
| KTS |
AES Cert. #4054 and HMAC Cert. #2646 |
| KTS |
AES Cert. #4055 and HMAC Cert. #2647 |
| KTS |
AES Cert. #4056 and HMAC Cert. #2648 |
| KTS |
Triple-DES Cert. #2223 and HMAC Cert. #2648 |
| KTS |
Triple-DES Cert. #2224 and HMAC Cert. #2646 |
| KTS |
Triple-DES Cert. #2224 and HMAC Cert. #2647 |
| RSA |
Certs. #2087, #2201 and #2202 |
| SHS |
Certs. #3341, #3342, #3343, #3353 and #3571 |
| Triple-DES |
Certs. #2221, #2222, #2223 and #2224 |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 192 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; ARCFOUR; Blowfish; CAST; HMAC-MD5; HMAC-RIPEMD160; UMAC
Hardware Versions
SRX5400, SRX5600, and SRX5800 with components identified in Security Policy Table 1
Firmware Versions
JUNOS-FIPS 12.3X48-D30
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
