Certificate 2696 - Juniper Networks SRX100, SRX110, SRX210, SRX220, SRX240, SRX550, and SRX650 Services Gateways
intCertNum 2696
strVendorName Juniper Networks, Inc.
strURL http://www.juniper.net
strAddress1 1133 Innovation Way
strAddress2
strAddress3
strCity Sunnyvale
strStateProv CA
strPostalCode 94089
strCountry 94089
strContact Mahesh Bommareddy
strEmail mbommareddy@juniper.net
strPhone 408-936-5493
strFax
strContact2 Van Nguyen
strEmail2 vann@juniper.net
strFax2
strPhone2 408-936-2247
intCertNum 2696
strModuleName Juniper Networks SRX100, SRX110, SRX210, SRX220, SRX240, SRX550, and SRX650 Services Gateways
strPartNumber Hardware Versions: P/Ns {SRX100H, SRX100H2, SRX100H-TAA, SRX110H2-VA, SRX110H2-VB, SRX110H-VA, SRX110H-VB;
SRX210HE, SRX210HE2, SRX210HE2-POE, SRX210HE-POE, SRX210HE-POE-TAA, SRX210HE-TAA, SRX210H2-POE-TAA, SRX210H2-TAA;
SRX220H, SRX220H2, SRX220H-POE, SRX220H2-POE;
SRX240H, SRX240H2, SRX240H2-DC, SRX240H2-POE, SRX240H-DC, SRX240H-POE, SRX240H-POE-TAA, SRX240H-TAA, SRX240H2-DC-TAA, SRX240H2-POE-TAA, SRX240H2-TAA;
SRX550-645AP, SRX550-645DP, SRX550-645AP-TAA, SRX550-645DP-TAA;
SRX650-BASE-SRE6-645AP, SRX650-BASE-SRE6-645DP, SRX650B-SRE6-645AP-TAA} with JNPR-FIPS-TAMPER-LBLS;
Firmware Version: JUNOS-FIPS 12.1X46-D40
memModuleNotes When operated in FIPS mode and with the tamper-evident seals installed as indicated in the Security Policy
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL
strModuleType Hardware
strValidationDate 08/04/2016
intOverallLevel 2
memIndividualLevelNotes -Roles, Services, and Authentication: Level 3;-Design Assurance: Level 3;-Mitigation of Other Attacks: N/A;-Operational Environment: N/A
strFIPSAlgorithms Triple-DES (Certs. #2035, #2036, #2039, #2040, #2041, #2042 and #2043);
AES (Certs. #3650, #3656, #3657, #3658, #3659, #3660 and #3661);
SHS (Certs. #3068, #3074, #3075, #3076, #3077, #3078 and #3079);
HMAC (Certs. #2400, #2406, #2407, #2408, #2409, #2410 and #2411);
CVL (Certs. #659 and #660);
RSA (Certs. #1885, #1890, #1891, #1892, #1893 and #1894);
DSA (Certs. #1022, #1027, #1028, #1029, #1030 and #1031);
ECDSA (Certs. #758, #764, #765, #766, #767 and #768);
DRBG (Cert. #981)
strOtherAlgorithms Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 192 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
EC Diffie-Hellman (key agreement: key establishment methodology provides 128 or 192 bits of encryption strength);
NDRNG;
HMAC-SHA-1-96 (HMAC Certs. #2400, #2406, #2407, #2408, #2409, #2410 and #2411);
HMAC-MD5;
HMAC-MD5-96;
HMAC-RIPEMD160;
UMAC-128;
UMAC-64;
ARCFOUR;
ARCFOUR128;
ARCFOUR256;
BLOWFISH;
CAST128
strConfiguration Multi-Chip Stand Alone
memModuleDescription Juniper Networks SRX Series Services Gateways provide the essential capabilities necessary to connect, secure, and manage enterprise and service provider networks, from the smallest sites to the largest headquarters and data centers.
intModuleCount 7
memAdditionalNotes
strFirstValidtionDate 08/04/16 00:00:00
strLabName InfoGard
strValidationYear 2016