Module Name
Juniper Networks vSRX 3.0 Virtual Firewall
Validation Dates
07/07/2020
Caveat
When operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The vSRX Virtual Firewall delivers a complete virtual firewall solution, including advanced security, robust networking, and automated virtual machine life cycle management capabilities for service providers and enterprises. vSRX empowers security professionals to deploy and scale firewall protection in highly dynamic environments.
Tested Configuration(s)
- and Junos OS 19.2R1 on VMware ESXi 6.5 running on a PacStar 451 Server with Intel Corei5
- Junos OS 19.2R1 on VMware ESXi 6.5 running on a HP ProLiant DL380 Gen9 Server with Intel Xeon E5
- Junos OS 19.2R1 on VMware ESXi 6.5 running on a PacStar 451 Server with Intel Xeon D
FIPS Algorithms
| AES |
Certs. #C936, #C937 and #C939 |
| CVL |
Certs. #C935 and #C939 |
| DRBG |
Certs. #C932, #C937 and #C939 |
| ECDSA |
Certs. #C937 and #C939 |
| HMAC |
Certs. #C932, #C934, #C936, #C937 and #C939 |
| KAS-SSC |
vendor affirmed |
| KTS |
AES Certs. #C937 and #C939 and HMAC Certs. #C937 and #C939; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Certs. #C937 and #C939 and HMAC Certs. #C937 and #C939; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #C937 and #C939 |
| SHS |
Certs. #C932, #C934, #C936, #C937 and #C939 |
| Triple-DES |
Certs. #C936, #C937 and #C939 |
Software Versions
Junos OS 19.2R1
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
