Module Name
Juniper Networks EX4300 Ethernet Switches
Validation Dates
02/04/2019;03/12/2021
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.3 and 6 of the Security Policy.
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks EX4300 Ethernet Switches combine the carrier-class reliability with the economics of stackable platforms, delivering a high-performance, scalable solution for data center and campus office environments. Offering a full suite of Layer 2 and Layer 3 switching capabilities. EX4300 switches offer 24, 32 or 48-port 10/100/1000BASE-T with redundant, hot-swappable power supplies and Power over Ethernet (PoE).
The EX 4300 family supports 1Gigabit and 10 Gigabit MACSec support in both FIPS mode and non FIPS mode of operation as of Junos release 17.4R1-S4.
FIPS Algorithms
| AES |
Certs. #1269, #5332, #5506 and #5509 |
| CVL |
Cert. #1956 |
| DRBG |
Cert. #2177 |
| ECDSA |
Cert. #1479 |
| HMAC |
Certs. #3663, #3664, and #3665 |
| KAS-SSC |
vendor affirmed |
| KBKDF |
Cert. #229 |
| KTS |
AES Cert. #5509 |
| KTS |
AES Cert. #5506 and HMAC Cert. #3665; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #2773 and HMAC Cert. #3665; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Cert. #2956 |
| SHS |
Certs. #4419, #4420, and #4421 |
| Triple-DES |
Cert. #2773 |
Hardware Versions
[EX4300-24P, EX4300-24T and EX4300-48T with component EX-UM-4X4SFP] and [EX4300-32F with component EX-UM-8X8SFP]
Firmware Versions
Junos OS 17.4R1-S4
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
