U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Cryptographic Module Validation Program CMVP

Certificate #3908

Details

Module Name
Juniper Networks NFX250 Network Services Platform
Standard
FIPS 140-2
Status
Active
Sunset Date
4/22/2026
Overall Level
1
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Sections 1.2 and 6 of the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The NFX250 Network Services Platform provides multiple network connections and an open, standards-based architecture. It uses SRX Series next-generation firewall software for security. The NFX250 delivers business services, such as SD-WAN. It is for enterprise organizations and for service providers that deliver managed services to the enterprise.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #C1979, #C1981 and #C2042
CVL Certs. #C1978 and #C2042
DRBG Certs. #C1981, #C1983 and #C2042
ECDSA Certs. #C1981 and #C2042
HMAC Certs. #C1979, #C1981, #C1982, #C1983 and #C2042
KAS-SSC vendor affirmed
KTS AES Certs. #C1981 and #C2042 and HMAC Certs. #C1981 and #C2042; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Certs. #C1981 and #C2042 and HMAC Certs. #C1981 and #C2042; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #C1981 and #C2042
SHS Certs. #C1979, #C1981, #C1982, #C1983 and #C2042
Triple-DES Certs. #C1979, #C1981 and #C2042
Allowed Algorithms
NDRNG
Hardware Versions
NFX250-S1, NFX250-S1E and NFX250-S2
Firmware Versions
Junos OS 20.1R1

Vendor

Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, CA 94089
USA

Bill Shelton
bshelton@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100
Ray Tom
rtom@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100

Validation History

Date Type Lab
4/23/2021 Initial ACUMEN SECURITY, LLC