Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #1170

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

SSG 5 and SSG 20

Standard

FIPS 140-2

Status

Historical

Historical Reason

RNG SP800-131A Revision 1 Transition

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Cryptographic Module Specification: Level 3
Cryptographic Module Ports and Interfaces: Level 3
Roles, Services, and Authentication: Level 3
Cryptographic Key Management: Level 3
Design Assurance: Level 3

Module Type

Hardware

Embodiment

Multi-chip standalone

Description

The SSG 5 and SSG 20 are high-performance security platforms for small branch office and standalone businesses that want to stop internal and external attacks, prevent unauthorized access and achieve regulatory compliance. Both the SSG 5 and SSG 20 deliver 160 Mbps of stateful firewall traffic and 40 Mbps of IPSec VPN traffic.

Approved Algorithms

AES	Certs. #866 and #870
DSA	Certs. #314 and #318
ECDSA	Certs. #103 and #107
HMAC	Certs. #482 and #486
RNG	Certs. #496 and #500
RSA	Certs. #417 and #421
SHS	Certs. #860 and #864
Triple-DES	Certs. #711 and #715

Other Algorithms

Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5

Hardware Versions

P/Ns SSG-5 (SSG 5) and SSG-20 (SSG 20)

Firmware Versions

ScreenOS 6.2.0r3

Vendor

Juniper Networks, Inc.
1194 N. Mathilda Ave.
Sunnyvale, CA 94089
USA

Claudio Baserga
cbaserga@juniper.net
Phone: 408-936-0961

Related Files

Security Policy
Certificate

Validation History

Date	Type	Lab
8/18/2009	Initial	UL VERIFICATION SERVICES INC
1/28/2010	Update
12/11/2013	Update