Module Name
Juniper Networks MX240, MX480, MX960, MX2010, and MX2020 3D Universal Edge Routers with RE-S-X6-64G/REMX2K-X8-64G Routing Engine and Multiservices MPC
Validation Dates
02/21/2019
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks MX Series is a robust portfolio of SDN enabled routing platforms that provide industry leading system capacity, density, security and performance. RE-S-X6-64G/REMX2K-X8-64G routing engines provide enhanced scaling and performance. Key features include support for a wide range of L2/L3 VPN services and advanced broadband network gateway functions, along with integrated routing, switching and security services. Multiservices MPC supports Layer 3 services such as stateful firewall, NAT, IPsec, active flow monitoring and RPM.
FIPS Algorithms
| AES |
Certs. #5466, #5467 and #5479 |
| CVL |
Certs. #1917, #1918, #1919 and #1932 |
| DRBG |
Certs. #2146, #2147 and #2148 |
| ECDSA |
Certs. #1462 and #1468 |
| HMAC |
Certs. #3622, #3623, #3624, #3625 and #3634 |
| KTS |
AES Certs. #5466 and #5467 and HMAC Certs. #3624 and #3625; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Certs. #2751 and #2752 and HMAC Certs. #3624 and #3625; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #2936 and #2943 |
| SHS |
Certs. #4385, #4386, #4387, #4388 and #4397 |
| Triple-DES |
Certs. #2751, #2752 and #2758 |
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1919 and #1932, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1917, #1918, #1919 and #1932, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
MX240, MX480, MX960, MX2010 and MX2020 with components identified in Security Policy Table 1
Firmware Versions
Junos OS 18.1R1
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
