Module Name
Juniper Networks MX240, MX480, MX960 3D Universal Edge Routers and EX9204, EX9208, EX9214 Ethernet Switches with RE-S-X6-64G/RE-S-X6-128G/EX9200-RE2 Routing Engine and MPC7E-10G/EX9200-40XS MACsec Card
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Sections 1.2 and 6 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Juniper Networks MX and EX9200 Series is a robust portfolio of SDN enabled routing and switching platforms that provide industry leading system capacity,density,security and performance. MPC7E-10G/EX9200-40XS supports 40 ports of 10gbps with GCM-AES-256 MACSEC encryption.
Approved Algorithms
| AES |
Certs. #C1786, #C1789 and #3969 |
| CVL |
Cert. #C1786 |
| DRBG |
Certs. #C1784, #C1786 and #C1787 |
| ECDSA |
Cert. #C1786 |
| HMAC |
Certs. #C1784, #C1785, #C1786 and #C1787 |
| KAS-SSC |
vendor affirmed |
| KBKDF |
Cert. #C1789 |
| KTS |
AES Cert. #C1789, key establishment methodology provides 128 bits of encryption strength |
| KTS |
AES Cert. #C1786 and HMAC Cert. #C1786; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #C1786 and HMAC Cert. #C1786; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Cert. #C1786 |
| SHS |
Certs. #C1784, #C1785, #C1786 and #C1787 |
| Triple-DES |
Cert. #C1786 |
Hardware Versions
MX240, MX480, MX960, EX9204, EX9208, EX9214 with components identified in Security Policy Table 1
Firmware Versions
Junos OS 19.1R2
