U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1756

Details

Module Name
NetScreen-ISG 1000 [1] and NetScreen-ISG 2000 [2]
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
07/27/2012;12/11/2013
Overall Level
2
Caveat
When operated in FIPS mode with the tamper evident seals and security devices installed as indicated in the Security Policy
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
Juniper Networks integrated security devices are purpose-built to perform essential networking security functions designed on top of robust networking and security real-time operating systems, ScreenOS. These are high-performance platforms that deliver integrated security and LAN/WAN routing across high-density LAN/WAN interfaces, Juniper Networks integrated security devices address the needs of small to medium sized locations, large distributed enterprises, and service providers as well as large and co-located datacenters.
FIPS Algorithms
AES Cert. #1617
DSA Cert. #504
ECDSA Cert. #202
HMAC Cert. #948
RNG Cert. #865
RSA Cert. #795
SHS Cert. #1426
Triple-DES Cert. #1058
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 bits of encryption strength); NDRNG; DES; MD5
Hardware Versions
[NS-ISG-1000, NS-ISG-1000-DC, NS-ISG-1000B and NS-ISG-1000B-DC] [1] and [(NS-ISG-2000, NS-ISG-2000-DC, NS-ISG-2000B and NS-ISG-2000B-DC) with 1, 2, 3 or 4 FE8 Interface Cards][2] with JNPR-FIPS-TAMPER-LBLS
Firmware Versions
ScreenOS 6.3r6

Vendor

Juniper Networks, Inc.
1194 North Mathilda Ave
Sunnyvale, CA 94089
USA

Claudio Baserga
cbaserga@juniper.net
Phone: 408-936-0961

Lab

ICSA
NVLAP Code: 200697-0