Module Name
Junos Space Network Management Platform, with or without Network Director and with or without Security Director in Virtual Appliance
Validation Dates
12/21/2020
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Sections 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The FIPS enabled Junos Space platform and the NM applications (Network Director & Security Director) installed on this platform will provide secured environment for managing the Juniper Devices.
Tested Configuration(s)
- CentOS 6.8 on VMware ESXi 6.5 running on a Dell Inc. PowerEdge T440 Server with Intel Xeon Bronze 3106 (single-user mode)
FIPS Algorithms
AES |
Certs. #C1282, #C1284, #C1285 and #C1372 |
CKG |
vendor affirmed |
CVL |
Certs. #C1282, #C1283 and #C1284 |
DRBG |
Certs. #C1282, #C1284, #C1285 and #C1372 |
DSA |
Certs. #C1282 and #C1372 |
ECDSA |
Certs. #C1282 and #C1372 |
HMAC |
Certs. #C1282 and #C1284 |
KAS-SSC |
vendor affirmed |
KTS |
AES Cert. #C1282 and HMAC Cert. #C1282; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C1282; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C1284 and HMAC Cert. #C1284; key establishment methodology provides 128 bits of encryption strength |
RSA |
Certs. #C1282, #C1284 and #C1372 |
SHS |
Certs. #C1282, #C1284, #C1285 and #C1372 |
Software Versions
Junos Space 19.1R1_FIPS, Network-Director.3.6R3.15 and Security-Director-19.1R1.23