Module Name
Juniper Networks SRX5400, SRX5600, and SRX5800 Services Gateways
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode and with the tamper-evident seals installed as indicated in the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks SRX Series Services Gateways provide the essential capabilities necessary to connect, secure, and manage enterprise and service provider networks, from the smallest sites to the largest headquarters and data centers.
Approved Algorithms
AES |
Certs. #3650, #3656, #3662 and #3663 |
CVL |
Certs. #659 and #660 |
DRBG |
Cert. #981 |
DSA |
Certs. #1022, #1032 and #1033 |
ECDSA |
Certs. #758, #769 and #770 |
HMAC |
Certs. #2400, #2406, #2412 and #2413 |
RSA |
Certs. #1885, #1895 and #1896 |
SHS |
Certs. #3068, #3074, #3080 and #3081 |
Triple-DES |
Certs. #2035, #2036, #2037 and #2038 |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 192 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); HMAC-SHA-1-96 (HMAC Certs. #2400, #2406 and #2413); NDRNG; ARCFOUR; ARCFOUR128; ARCFOUR256; BLOWFISH; CAST128; HMAC-MD5; HMAC-MD5-96; HMAC-RIPEMD160; UMAC-64; UMAC-128
Hardware Versions
P/Ns {SRX5400 (SRX5400B2-AC, SRX5400B2-DC, SRX5400BB-AC, or SRX5400BB-DC), SRX5600 (SRX5600BASE-AC or SRX5600BASE-DC), and SRX5800 (SRX5800BASE-AC or SRX5800BASE-DC)} with Service Processing Cards (SRX5K-SPC-2-10-40 or SRX5K-SPC-4-15-320) and Tamper Seals (JNPR-FIPS-TAMPER-LBLS)
Firmware Versions
JUNOS-FIPS 12.1X46-D40