Module Name
Junos Space Network Management Platform, with or without Network Director and with or without Security Director in Virtual Appliance
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Sections 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The FIPS enabled Junos Space platform and the NM applications (Network Director & Security Director) installed on this platform will provide secured environment for managing the Juniper Devices.
Tested Configuration(s)
- CentOS 6.8 on VMware ESXi 6.5 running on a Dell Inc. PowerEdge T440 Server with Intel Xeon Bronze 3106 (single-user mode)
Approved Algorithms
AES |
Certs. #C1282, #C1284, #C1285 and #C1372 |
CKG |
vendor affirmed |
CVL |
Certs. #C1282, #C1283 and #C1284 |
DRBG |
Certs. #C1282, #C1284, #C1285 and #C1372 |
DSA |
Certs. #C1282 and #C1372 |
ECDSA |
Certs. #C1282 and #C1372 |
HMAC |
Certs. #C1282 and #C1284 |
KAS-SSC |
vendor affirmed |
KTS |
AES Cert. #C1282 and HMAC Cert. #C1282; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C1282; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C1284 and HMAC Cert. #C1284; key establishment methodology provides 128 bits of encryption strength |
RSA |
Certs. #C1282, #C1284 and #C1372 |
SHS |
Certs. #C1282, #C1284, #C1285 and #C1372 |
Software Versions
Junos Space 19.1R1_FIPS, Network-Director.3.6R3.15 and Security-Director-19.1R1.23