U.S. flag   An unofficial archive of your favorite United States government website
This is an archive
(replace .gov by .rip)

Cryptographic Module Validation Program CMVP

Certificate #3379

Details

Module Name
Juniper Networks MX240, MX480, MX960, MX2010, and MX2020 3D Universal Edge Routers with RE-S-X6-64G/REMX2K-X8-64G Routing Engine and Multiservices MPC
Standard
FIPS 140-2
Status
Active
Sunset Date
2/20/2024
Validation Dates
02/21/2019
Overall Level
1
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks MX Series is a robust portfolio of SDN enabled routing platforms that provide industry leading system capacity, density, security and performance. RE-S-X6-64G/REMX2K-X8-64G routing engines provide enhanced scaling and performance. Key features include support for a wide range of L2/L3 VPN services and advanced broadband network gateway functions, along with integrated routing, switching and security services. Multiservices MPC supports Layer 3 services such as stateful firewall, NAT, IPsec, active flow monitoring and RPM.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #5466, #5467 and #5479
CVL Certs. #1917, #1918, #1919 and #1932
DRBG Certs. #2146, #2147 and #2148
ECDSA Certs. #1462 and #1468
HMAC Certs. #3622, #3623, #3624, #3625 and #3634
KTS AES Certs. #5466 and #5467 and HMAC Certs. #3624 and #3625; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Certs. #2751 and #2752 and HMAC Certs. #3624 and #3625; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #2936 and #2943
SHS Certs. #4385, #4386, #4387, #4388 and #4397
Triple-DES Certs. #2751, #2752 and #2758
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1919 and #1932, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1917, #1918, #1919 and #1932, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
MX240, MX480, MX960, MX2010 and MX2020 with components identified in Security Policy Table 1
Firmware Versions
Junos OS 18.1R1

Vendor

Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, CA 94089
USA

Bill Shelton
bshelton@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100
Geetha Naik
ngeetha@juniper.net
Phone: +91-80-61214404

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0