Module Name
Juniper Networks MX240, MX480, MX960 3D Universal Edge Routers with RE1800 Routing Engine and Multiservices MPC
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks MX Series is a robust portfolio of SDN enabled routing platforms that provide industry leading system capacity, density, security and performance. Key features include support for a wide range of L2/L3 VPN services and advanced broadband network gateway functions, along with integrated routing, switching and security services. Multiservices MPC supports Layer 3 services such as stateful firewall, NAT, IPsec, active flow monitoring and RPM.
Approved Algorithms
| AES |
Certs. #C1786, #C1787 and #C1788 |
| CVL |
Certs. #C1786 and #C1787 |
| DRBG |
Certs. #C1784, #C1786 and #C1787 |
| ECDSA |
Certs. #C1786 and #C1788 |
| HMAC |
Certs. #C1784, #C1785, #C1786, #C1787 and #C1788 |
| KAS-SSC |
vendor affirmed |
| KTS |
AES Certs. #C1786 and #C1787 and HMAC Certs. #C1786 and #C1787; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Certs. #C1786 and #C1787 and HMAC Certs. #C1786 and #C1787; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #C1786 and #C1788 |
| SHS |
Certs. #C1784, #C1785, #C1786, #C1787 and #C1788 |
| Triple-DES |
Certs. #C1786, #C1787 and #C1788 |
Hardware Versions
MX240, MX480, MX960 with components identified in Security Policy Table 1
Firmware Versions
Junos OS 19.1R2
