This page was not yet optimized for use on mobile
devices.
Juniper Networks MX104 3D Universal Edge Router with the Multiservices MIC
Certificate #3936
Webpage information
Security policy
Symmetric Algorithms
AES, CAST, Triple-DES, TDES, Blowfish, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-224, HMAC-SHA-512Asymmetric Algorithms
RSA 4096, RSA 2048, RSA 3072, ECDH, ECDSA, ECC, DH, Diffie-Hellman, DSAHash functions
SHA-1, SHA-256, SHA-512, SHA-224, SHA-384, MD5Schemes
Key Exchange, Key AgreementProtocols
SSH, SSHv2, IKEv1, IKEv2, IKE, IPsec, VPNRandomness
DRBG, RNGLibraries
OpenSSLElliptic Curves
P-256, P-384, P-521Block cipher modes
ECB, CBC, CTR, GCMSecurity level
Level 1, level 1Standards
FIPS 140-2, FIPS140-2, FIPS PUB 140-2, SP 800-135, SP 800-90A, SP 800-67, RFC 2409, RFC7296, RFC 7296, RFC4106, RFC 5282, RFC 4253, X.509File metadata
| Subject | FIPS 140-2 Security Policy Template |
|---|---|
| Author | Jennifer Brady |
| Creation date | D:20210427124308-04'00' |
| Modification date | D:20210427124308-04'00' |
| Pages | 31 |
| Creator | Microsoft® Word for Microsoft 365 |
| Producer | Microsoft® Word for Microsoft 365 |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 3936,
"dgst": "9cfc3099e52f8b31",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"SHS#C1179",
"RSA#C1203",
"SHS#C1180",
"DRBG#C1179",
"AES#C1203",
"AES#C1181",
"HMAC#C1179",
"AES#C1182",
"SHS#C1203",
"CVL#C1182",
"RSA#C1181",
"ECDSA#C1203",
"HMAC#C1181",
"Triple-DES#C1203",
"HMAC#C1180",
"Triple-DES#C1181",
"SHS#C1182",
"ECDSA#C1181",
"DRBG#C1181",
"SHS#C1181",
"HMAC#C1182",
"CVL#C1181",
"KTS#C1181",
"KTS#C1182",
"Triple-DES#C1182",
"HMAC#C1203",
"DRBG#C1182"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:juniper:mx104:-:*:*:*:*:*:*:*",
"cpe:2.3:h:juniper:mx10:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"19.1"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 16
},
"ECDSA": {
"ECDSA": 28
}
},
"FF": {
"DH": {
"DH": 10,
"Diffie-Hellman": 18
},
"DSA": {
"DSA": 3
}
},
"RSA": {
"RSA 2048": 17,
"RSA 3072": 1,
"RSA 4096": 10
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 13
},
"CTR": {
"CTR": 2
},
"ECB": {
"ECB": 1
},
"GCM": {
"GCM": 5
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 6
}
},
"crypto_protocol": {
"IKE": {
"IKE": 15,
"IKEv1": 5,
"IKEv2": 6
},
"IPsec": {
"IPsec": 14
},
"SSH": {
"SSH": 42,
"SSHv2": 2
},
"VPN": {
"VPN": 1
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 2
},
"KEX": {
"Key Exchange": 3
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 54,
"P-384": 38,
"P-521": 14
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES (128": 2,
"AES CBC 128/192/256": 5,
"HMAC SHA- 256": 1,
"HMAC SHA-1": 1,
"HMAC SHA-256": 4,
"HMAC-SHA-1": 12,
"HMAC-SHA-224": 2,
"HMAC-SHA-256": 8,
"HMAC-SHA-256 9": 2,
"HMAC-SHA-384": 6,
"HMAC-SHA-512": 4,
"RSA 2048": 17,
"RSA 3072": 1,
"RSA 4096": 10,
"RSA2": 1,
"SHA 1, 256": 1,
"SHA 256": 10,
"SHA 384": 4,
"SHA 512": 2,
"SHA- 256": 1,
"SHA-1": 11,
"SHA-224": 2,
"SHA-256": 17,
"SHA-384": 8,
"SHA-512": 4
}
},
"fips_security_level": {
"Level": {
"Level 1": 3,
"level 1": 4
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 1
}
},
"SHA": {
"SHA1": {
"SHA-1": 11
},
"SHA2": {
"SHA-224": 2,
"SHA-256": 22,
"SHA-384": 4,
"SHA-512": 5
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 13
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 10,
"FIPS PUB 140-2": 1,
"FIPS140-2": 1
},
"NIST": {
"SP 800-135": 2,
"SP 800-67": 3,
"SP 800-90A": 6
},
"RFC": {
"RFC 2409": 1,
"RFC 4253": 1,
"RFC 5282": 2,
"RFC 7296": 2,
"RFC4106": 1,
"RFC7296": 1
},
"X509": {
"X.509": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 21
},
"CAST": {
"CAST": 1
}
},
"DES": {
"3DES": {
"TDES": 2,
"Triple-DES": 16
}
},
"constructions": {
"MAC": {
"HMAC": 26,
"HMAC-SHA-224": 1,
"HMAC-SHA-256": 8,
"HMAC-SHA-384": 1,
"HMAC-SHA-512": 1
}
},
"miscellaneous": {
"Blowfish": {
"Blowfish": 1
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Jennifer Brady",
"/CreationDate": "D:20210427124308-04\u002700\u0027",
"/Creator": "Microsoft\u00ae Word for Microsoft 365",
"/ModDate": "D:20210427124308-04\u002700\u0027",
"/Producer": "Microsoft\u00ae Word for Microsoft 365",
"/Subject": "FIPS 140-2 Security Policy Template",
"pdf_file_size_bytes": 884201,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.juniper.net/support/downloads/junos.html",
"https://www.juniper.net/assets/us/en/local/pdf/datasheets/1000597-en.pdf",
"http://www.juniper.net/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 31
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "d57009f8dbd1e9335791fdd44237b67b139f2999901339a7ca306ed15de282e7",
"policy_txt_hash": "fc3d25d46fb682aa21e3ed87cf94dfae3d87b6b470ff076e8e07722813d5994c"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode, installed, initialized and configured as specified in Section 1.2 and 6 of the Security Policy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2021_010621_0658.pdf",
"date_sunset": "2026-05-25",
"description": "MX104 3D Universal Edge router is a modular, highly redundant, mobile back haul optimized full featured MX series platform built for space and power constrained service provider and enterprise facilities. Multiservices MIC supports Layer 3 services such as stateful firewall, NAT, IPsec, active flow monitoring and RPM.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 3",
"Design Assurance: Level 3",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "Junos OS 19.1R2",
"historical_reason": null,
"hw_versions": "MX104 with RE-MX104 and MS-MIC-16G",
"level": 1,
"mentioned_certs": {},
"module_name": "Juniper Networks MX104 3D Universal Edge Router with the Multiservices MIC",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2021-05-26",
"lab": "Acumen Security",
"validation_type": "Initial"
}
],
"vendor": "Juniper Networks, Inc.",
"vendor_url": "http://www.juniper.net"
}
}