Module Name
Juniper Networks SRX1500, SRX4100 and SRX4200 Services Gateways
Validation Dates
11/05/2018
Caveat
When operated in FIPS mode and with tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The SRX1500, SRX4100, SRX4200 Service Gateways offer outstanding protection, performance, scalability, availability, and integrated security services. Designed for high-performance security services architecture, and seamless integration of networking and security in a single platform, the SRX1500, SRX4100, and SRX4200 are best suited for campuses, regional headquarters and enterprise data centers with a focus on application visibility and control, intrusion prevention, advanced threat protection, authentication, confidentiality of information, and integrated cloud-based security.
FIPS Algorithms
| AES |
Certs. #5303, #5304, #5307, #5308, #5339 and #5340 |
| CVL |
Certs. #1769, #1770, #1773 and #1774 |
| DRBG |
Certs. #2039, #2041, #2042, #2043, #2046 and #2047 |
| ECDSA |
Certs. #1388, #1389, #1392 and #1393 |
| HMAC |
Certs. #3501, #3503, #3504, #3505, #3507, #3508, #3511, #3512, #3536 and #3537 |
| KTS |
AES Certs. #5303, #5304, #5307, #5308 and HMAC Certs. #3507, #3508, #3511, #3512; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Certs. #2679, #2680, #2683, #2684 and HMAC Certs. #3507, #3508, #3511, #3512; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #2838, #2839, #2842 and #2843 |
| SHS |
Certs. #4255, #4257, #4258, #4259, #4261, #4262, #4265, #4266, #4290 and #4291 |
| Triple-DES |
Certs. #2679, #2680, #2683, #2684, #2698 and #2699 |
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1769, #1770, #1773 and #1774, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1769, #1770, #1773 and #1774, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
SRX1500 SYS-JB-AC, SRX1500 SYS-JB-DC, SRX4100 SYS-JB-AC, SRX4100 SYS-JB-DC, SRX4200 SYS-JB-AC and SRX4200 SYS-JB-DC; with Tamper Seals JNPR-FIPS-TAMPER-LBLS
Firmware Versions
Junos OS 17.4R1-S1
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
