U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1611

Details

Module Name
Juniper Networks SRX3400 and SRX3600 Services Gateways
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
10/06/2011;11/08/2011;12/11/2013
Overall Level
2
Caveat
The tamper evident seals and security devices installed as indicated in the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
Juniper Networks SRX3000 Series line of services gateways is the next generation solution for securing the ever increasing network infrastructure and applications requirements for both enterprise and service provider environments. Designed from the ground up to provide flexible processing scalability, I/O scalability, and services integration, the SRX3000 Series line can meet the network and security requirements of data center hyper-consolidation, rapid managed services deployments, and aggregation of security solutions.
FIPS Algorithms
AES Certs. #1575 and #1577
DSA Cert. #486
HMAC Certs. #922 and #923
RNG Cert. #849
RSA Cert. #768
SHS Certs. #1395 and #1396
Triple-DES Certs. #1032 and #1033
Other Algorithms
RSA (key wrapping; key establishment methodology provides 80 bits of encryption strength; non-compliant); Diffie-Hellman (key agreement; key establishment methodology provides 96 bits of encryption strength; non-compliant)
Hardware Versions
(SRX3400BASE-AC, SRX3400BASE-DC, SRX3600BASE-AC and SRX3600BASE-DC) with JNPR-FIPS-TAMPER-LBLS
Firmware Versions
10.4R4

Vendor

Juniper Networks, Inc.
1194 North Mathilda Ave.
Sunnyvale, CA 94089
USA

Claudio Baserga
cbaserga@juniper.net
Phone: 408-936-0961

Lab

ICSA
NVLAP Code: 200697-0