Module Name
Juniper Networks NFX250 Network Services Platform
Validation Dates
09/19/2018
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
NFX250 Network Services Platform are Juniper Network’s secure, automated, software-driven customer premises equipment (CPE) devices that deliver virtualized network and security services on demand. Leveraging Network Functions Virtualization (NFV) and built on the Juniper Cloud CPE solution, NFX250 enables service providers to deploy and service chain multiple, secure, high-performance virtualized network functions (VNFs) as a single device. This automated, software-driven solution dynamically provisions new services on demand.
FIPS Algorithms
| AES |
Cert. #5320 |
| CKG |
vendor affirmed |
| CVL |
Cert. #1601 |
| DRBG |
Certs. #1867 and #2054 |
| ECDSA |
Cert. #1301 |
| HMAC |
Certs. #3366, #3367 and #3522 |
| KTS |
AES Cert. #5320 and HMAC Cert. #3367; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #2606 and HMAC Cert. #3367; key establishment methodology provides 112 bits of encryption strength |
| SHS |
Certs. #4111, #4112, and #4276 |
| Triple-DES |
Cert. #2606 |
Allowed Algorithms
EC Diffie-Hellman (CVL Certs. #1601, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
NFX250-S1, NFX250-S2
Firmware Versions
Junos OS 17.3R2
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
