Module Name
Juniper Networks SRX1500, SRX4100, SRX4200 and SRX4600 Services Gateways
Validation Dates
09/01/2020
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The SRX1500, SRX4100, SRX4200 and SRX4600 Service Gateways offer outstanding protection, performance, scalability, availability, and integrated security services. Designed for high-performance security services architecture, and seamless integration of networking and security in a single platform, the SRX1500, SRX4100, SRX4200 and SRX 4600 are best suited for campuses, regional headquarters and enterprise data centers with a focus on application visibility and control, intrusion prevention, advanced threat protection, authentication, confidentiality of information, and integrated cloud-based security.
FIPS Algorithms
| AES |
Certs. #C1045, #C1046 and #C1049 |
| CVL |
Certs. #C1045, #C1049 and #C1050 |
| DRBG |
Certs. #C1044, #C1045 and #C1049 |
| ECDSA |
Certs. #C1045 and #C1049 |
| HMAC |
Certs. #C1043, #C1044, #C1045, #C1046 and #C1049 |
| KAS-SSC |
vendor affirmed |
| KTS |
AES Cert. #C1045 and HMAC Cert. #C1045; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
AES Cert. #C1049 and HMAC Cert. #C1049; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #C1045 and HMAC Cert. #C1045; key establishment methodology provides 112 bits of encryption strength |
| KTS |
Triple-DES Cert. #C1049 and HMAC Cert. #C1049; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #C1045 and #C1049 |
| SHS |
Certs. #C1043, #C1044, #C1045, #C1046 and #C1049 |
| Triple-DES |
Certs. #C1045, #C1046 and #C1049 |
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C1049, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
[SRX1500 SYS-JB-AC, SRX1500 SYS-JB-DC, SRX4100 SYS-JB-AC, SRX4100 SYS-JB-DC, SRX4200 SYS-JB-AC, SRX4200 SYS-JB-DC, SRX4600 (AC), SRX4600 (DC)] with JNPR-FIPS-TAMPER-LBLS
Firmware Versions
JUNOS OS 19.2R1
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
