U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3540

Details

Module Name
Juniper Networks SRX300, SRX340, SRX345, SRX550-M, SRX5400, SRX5600 and SRX5800 Services Gateways with Junos 17.4R1-S1
Standard
FIPS 140-2
Status
Active
Sunset Date
9/29/2024
Validation Dates
09/30/2019
Overall Level
2
Caveat
When operated in FIPS mode and with tamper-evident seals installed as indicated in the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The Juniper Networks SRX Series Services Gateways are a series of secure routers that provide essential capabilities to connect, secure, and manage work force locations sized from handfuls to hundreds of users. By consolidating fast, highly available switching, routing, security, and applications capabilities in a single device, enterprises can economically deliver new services, safe connectivity, and a satisfying end user experience.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #5334, #5335, #5336, #5337, #5347 and #5386
CVL Certs. #1799 and #1848
DRBG Cert. #2060
ECDSA Certs. #1422, #1435, #1436, #1437 and #1438
HMAC Certs. #3530, #3531, #3532, #3534, #3544 and #3567
KTS AES Certs. #5337 and #5386 and HMAC Certs. #3534 and #3567; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Certs. #2697 and #2713 and HMAC Certs. #3534 and #3567; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #2880, #2894, #2895, #2896 and #2897
SHS Certs. #4284, #4285, #4286, #4287, #4288, #4298 and #4320
Triple-DES Certs. #2694, #2695, #2696, #2697, #2705 and #2713
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1799 and #1848, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1799 and #1848, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG
Hardware Versions
SRX300, SRX340, SRX345, SRX550-M, SRX5400, SRX5600 and SRX5800 with JNPR-FIPS-TAMPER-LBLS
Firmware Versions
JUNOS 17.4R1-S1
Product URL
https://www.juniper.net/us/en/products-services/security/srx-series/

Vendor

Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, CA 94089
USA

Bill Shelton
bshelton@juniper.net
Phone: 408-745-2000
 Tracy Pham
tracyp@juniper.net
Phone: 408-427-1863

Related Files

Security Policy
Consolidated Certificate

Lab

BAE SYSTEMS APPLIED INTELLIGENCE
NVLAP Code: 200900-0