Cryptographic Module Validation Program CMVP

Certificate #3136

Details

Module Name
Juniper Networks SRX1500, SRX4100 and SRX4200 Services Gateways
Standard
FIPS 140-2
Status
Active
Sunset Date
2/22/2023
Validation Dates
02/23/2018
Overall Level
2
Caveat
When operated in FIPS mode and with tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The SRX1500, SRX4100, SRX4200 Service Gateways offer outstanding protection, performance, scalability, availability, and integrated security services. Designed for high-performance security services architecture, and seamless integration of networking and security in a single platform, the SRX1500, SRX4100, and SRX4200 are best suited for campuses, regional headquarters and enterprise data centers with a focus on application visibility and control, intrusion prevention, advanced threat protection, authentication, confidentiality of information, and integrated cloud-based security.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #4631, #4632, #4710, #4711, #4721 and #4722
CKG vendor affirmed
CVL Certs. #1291, #1292, #1293 and #1355
DRBG Certs. #1559, #1560, #1602 and #1603
ECDSA Certs. #1140, #1141, #1163 and #1164
HMAC Certs. #3066, #3067, #3128, #3129, #3138 and #3139
KTS AES Certs. #4631, #4632, #4710 and #4711 and HMAC Certs. #3066, #3067, #3128, #3129; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Certs. #2463, #2464, #2496 and #2497 and HMAC Certs. #3066, #3067, #3128, #3129; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #2528, #2529, #2566 and #2567
SHS Certs. #3795, #3796, #3797, #3798, #3856, #3857, #3866 and #3867
Triple-DES Certs. #2463, #2464, #2496, #2497, #2503 and #2504
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1291, #1292, #1293 and #1355, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1291, #1292, #1293 and #1355, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG
Hardware Versions
SRX1500 SYS-JB-AC, SRX1500 SYS-JB-DC, SRX4100 SYS-JB-AC, SRX4100 SYS-JB-DC, SRX4200 SYS-JB-AC, SRX4200 SYS-JB-DC; with Tamper Seals JNPR-FIPS-TAMPER-LBLS
Firmware Versions
JUNOS 15.1X49-D100

Vendor

Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, CA 94089
USA

Bill Shelton
bshelton@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100
Vann (Vanna) Nguyen
vann@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0