Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3705

Details

Module Name
Juniper Networks SRX1500, SRX4100, SRX4200 and SRX4600 Services Gateways
Standard
FIPS 140-2
Status
Historical
 Historical Reason
SP 800-56Arev3 transition - replaced by certificate #4664
Overall Level
2
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The SRX1500, SRX4100, SRX4200 and SRX4600 Service Gateways offer outstanding protection, performance, scalability, availability, and integrated security services. Designed for high-performance security services architecture, and seamless integration of networking and security in a single platform, the SRX1500, SRX4100, SRX4200 and SRX 4600 are best suited for campuses, regional headquarters and enterprise data centers with a focus on application visibility and control, intrusion prevention, advanced threat protection, authentication, confidentiality of information, and integrated cloud-based security.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Certs. #C1045, #C1046 and #C1049
CVL Certs. #C1045, #C1049 and #C1050
DRBG Certs. #C1044, #C1045 and #C1049
ECDSA Certs. #C1045 and #C1049
HMAC Certs. #C1043, #C1044, #C1045, #C1046 and #C1049
KAS-SSC vendor affirmed
KTS AES Cert. #C1045 and HMAC Cert. #C1045; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #C1049 and HMAC Cert. #C1049; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #C1045 and HMAC Cert. #C1045; key establishment methodology provides 112 bits of encryption strength
KTS Triple-DES Cert. #C1049 and HMAC Cert. #C1049; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #C1045 and #C1049
SHS Certs. #C1043, #C1044, #C1045, #C1046 and #C1049
Triple-DES Certs. #C1045, #C1046 and #C1049
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C1049, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
[SRX1500 SYS-JB-AC, SRX1500 SYS-JB-DC, SRX4100 SYS-JB-AC, SRX4100 SYS-JB-DC, SRX4200 SYS-JB-AC, SRX4200 SYS-JB-DC, SRX4600 (AC), SRX4600 (DC)] with JNPR-FIPS-TAMPER-LBLS
Firmware Versions
JUNOS OS 19.2R1

Vendor

Juniper Networks, Inc
1133 Innovation Way
Sunnyvale, CA 94089
USA

Bill Shelton
bshelton@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100
Tracy Pham
tracyp@juniper.net
Phone: 408-745-2000
Fax: 408-745-2100

Validation History

Date Type Lab
9/1/2020 Initial LEIDOS CSTL