Module Name
Juniper Networks SRX1500, SRX4100 and SRX4200 Services Gateways
Validation Dates
02/23/2018
Caveat
When operated in FIPS mode and with tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The SRX1500, SRX4100, SRX4200 Service Gateways offer outstanding protection, performance, scalability, availability, and integrated security services. Designed for high-performance security services architecture, and seamless integration of networking and security in a single platform, the SRX1500, SRX4100, and SRX4200 are best suited for campuses, regional headquarters and enterprise data centers with a focus on application visibility and control, intrusion prevention, advanced threat protection, authentication, confidentiality of information, and integrated cloud-based security.
FIPS Algorithms
| AES |
Certs. #4631, #4632, #4710, #4711, #4721 and #4722 |
| CKG |
vendor affirmed |
| CVL |
Certs. #1291, #1292, #1293 and #1355 |
| DRBG |
Certs. #1559, #1560, #1602 and #1603 |
| ECDSA |
Certs. #1140, #1141, #1163 and #1164 |
| HMAC |
Certs. #3066, #3067, #3128, #3129, #3138 and #3139 |
| KTS |
AES Certs. #4631, #4632, #4710 and #4711 and HMAC Certs. #3066, #3067, #3128, #3129; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Certs. #2463, #2464, #2496 and #2497 and HMAC Certs. #3066, #3067, #3128, #3129; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #2528, #2529, #2566 and #2567 |
| SHS |
Certs. #3795, #3796, #3797, #3798, #3856, #3857, #3866 and #3867 |
| Triple-DES |
Certs. #2463, #2464, #2496, #2497, #2503 and #2504 |
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1291, #1292, #1293 and #1355, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1291, #1292, #1293 and #1355, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG
Hardware Versions
SRX1500 SYS-JB-AC, SRX1500 SYS-JB-DC, SRX4100 SYS-JB-AC, SRX4100 SYS-JB-DC, SRX4200 SYS-JB-AC, SRX4200 SYS-JB-DC; with Tamper Seals JNPR-FIPS-TAMPER-LBLS
Firmware Versions
JUNOS 15.1X49-D100
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
