Cryptographic Module Validation Program CMVP

Certificate #3319

Details

Module Name
Juniper Networks SRX1500, SRX4100 and SRX4200 Services Gateways
Standard
FIPS 140-2
Status
Active
Sunset Date
11/4/2023
Validation Dates
11/05/2018
Overall Level
2
Caveat
When operated in FIPS mode and with tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The SRX1500, SRX4100, SRX4200 Service Gateways offer outstanding protection, performance, scalability, availability, and integrated security services. Designed for high-performance security services architecture, and seamless integration of networking and security in a single platform, the SRX1500, SRX4100, and SRX4200 are best suited for campuses, regional headquarters and enterprise data centers with a focus on application visibility and control, intrusion prevention, advanced threat protection, authentication, confidentiality of information, and integrated cloud-based security.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #5303, #5304, #5307, #5308, #5339 and #5340
CVL Certs. #1769, #1770, #1773 and #1774
DRBG Certs. #2039, #2041, #2042, #2043, #2046 and #2047
ECDSA Certs. #1388, #1389, #1392 and #1393
HMAC Certs. #3501, #3503, #3504, #3505, #3507, #3508, #3511, #3512, #3536 and #3537
KTS AES Certs. #5303, #5304, #5307, #5308 and HMAC Certs. #3507, #3508, #3511, #3512; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Certs. #2679, #2680, #2683, #2684 and HMAC Certs. #3507, #3508, #3511, #3512; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #2838, #2839, #2842 and #2843
SHS Certs. #4255, #4257, #4258, #4259, #4261, #4262, #4265, #4266, #4290 and #4291
Triple-DES Certs. #2679, #2680, #2683, #2684, #2698 and #2699
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1769, #1770, #1773 and #1774, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1769, #1770, #1773 and #1774, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
SRX1500 SYS-JB-AC, SRX1500 SYS-JB-DC, SRX4100 SYS-JB-AC, SRX4100 SYS-JB-DC, SRX4200 SYS-JB-AC and SRX4200 SYS-JB-DC; with Tamper Seals JNPR-FIPS-TAMPER-LBLS
Firmware Versions
Junos OS 17.4R1-S1

Vendor

Juniper Networks, Inc.
1133 Innovation Way
Sunnyvale, CA 94089
USA

Bill Shelton
bshelton@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100
Tracy Pham
tracyp@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0