Module Name
Juniper Networks MX240, MX480, MX960, MX2010, MX2020 3D Universal Edge Routers and EX9204, EX9208, EX9214 Ethernet Switches with RE-S-X6-64G/REMX2K-X8-64G/EX9200-RE2 Routing Engine
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks MX Series is a robust portfolio of SDN enabled routing platforms that provide industry leading system capacity,density,security and performance .RE-S-X6-64G/REMX2K-X8-64G routing engines provide enhanced scaling and performance. Juniper Networks EX9200 series Ethernet Switches provide high performance, scalable connectivity, and carrier-class reliability for high-density environments with a a full suite of Layer 2 and Layer 3 switching capabilities along with firewall filters, multicast, hardware tunneling and Qos.
Approved Algorithms
| AES |
Cert. #5466 |
| CVL |
Certs. #1917 and #1918 |
| DRBG |
Certs. #2146 and #2147 |
| ECDSA |
Cert. #1462 |
| HMAC |
Certs. #3622, #3623 and #3624 |
| KTS |
AES Cert. #5466 and HMAC Cert. #3624; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #2751 and HMAC Cert. #3624; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Cert. #2936 |
| SHS |
Certs. #4385, #4386 and #4387 |
| Triple-DES |
Cert. #2751 |
Allowed Algorithms
EC Diffie-Hellman (CVL Certs. #1917 and #1918, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
MX240, MX480, MX960, MX2010, MX2020, EX9204, EX9208 and EX9214 with components identified in Security Policy Table 1
Firmware Versions
Junos OS 18.1R1
