Module Name
Juniper Networks MX240, MX480, MX960 3D Universal Edge Routers and EX9204, EX9208, EX9214 Ethernet Switches with RE-S-X6-64G/RE-S-X6-128G/EX9200-RE2 Routing Engine and MPC7E-10G/EX9200-40XS MACSec Card
Validation Dates
01/23/2020;03/23/2020
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks MX and EX9200 Series is a robust portfolio of SDN enabled routing and switching platforms that provide industry leading system capacity,density,security and performance. MPC7E-10G/EX9200-40XS supports 40 ports of 10gbps with GCM-AES-256 MACSEC encryption.
FIPS Algorithms
| AES |
Certs. #C488, #C502 and #3969 |
| CVL |
Cert. #C488 |
| DRBG |
Certs. #C484, #C486 and #C488 |
| ECDSA |
Cert. #C488 |
| HMAC |
Certs. #C484, #C485, #C486 and #C488 |
| KBKDF |
Cert. #C502 |
| KTS |
AES Cert. #C502, key establishment methodology provides 128 bits of encryption strength |
| KTS |
AES Cert. #C488 and HMAC Cert. #C488; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #C488 and HMAC Cert. #C488; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Cert. #C488 |
| SHS |
Certs. #C484, #C485, #C486 and #C488 |
| Triple-DES |
Cert. #C488 |
Allowed Algorithms
EC Diffie-Hellman (CVL Certs. #C488 and #C488, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
MX240, MX480, MX960, EX9204, EX9208, EX9214 with components identified in Security Policy Table 1
Firmware Versions
Junos OS 18.3R1-S1
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
