This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Juniper Networks EX4300-48MP Ethernet Switch	Juniper Networks EX4300-48MP Ethernet Switch
cert_id	4959	3822
dgst	04e729a9c402868a	71300a607803afff
heuristics/algorithms	{}	HMAC#C1596, HMAC#C1569, RSA#C1570, HMAC#C1570, SHS#C1596, AES#C1570, DRBG#C1570, DRBG#C1596, Triple-DES#C1570, SHS#C1570, KTS#C1570, SHS#C1569, ECDSA#C1570, CVL#C1570
heuristics/cpe_matches	cpe:2.3:h:juniper:ex4300-48mp:-:::::::, cpe:2.3:h:juniper:ex4300-48mp-s:-:::::::, cpe:2.3:h:juniper:ex4300:-:::::::*	cpe:2.3:h:juniper:ex4300-48mp:-:::::::, cpe:2.3:h:juniper:ex4300:-:::::::
heuristics/direct_transitive_cves	{}	{}
heuristics/extracted_versions	-	19.4
heuristics/indirect_transitive_cves	{}	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	{}	{}
heuristics/policy_processed_references/directly_referencing	4304, 4369	{}
heuristics/policy_processed_references/indirectly_referenced_by	{}	{}
heuristics/policy_processed_references/indirectly_referencing	4304, 47, 4369	{}
heuristics/policy_prunned_references	4304, 4369	{}
heuristics/related_cves	{}	{}
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id	Cert: #4304: 1 #4369: 1
pdf_data/keywords/fips_security_level	Level: Level 1: 5 Level 3: 1 level 1: 3	Level: Level 1: 3 level 1: 3
pdf_data/keywords/fips_certlike	Certlike: AES CBC 128: 2 AES CBC 128, 192: 1 AES CBC 192: 2 AES CBC 256: 2 AES CMAC 128: 2 AES CMAC 256: 2 AES CTR 128: 1 AES GCM 128: 2 AES GCM 128 and 256: 1 AES GCM 192: 2 AES GCM 256: 2 HMAC 198: 2 HMAC-SHA-1: 14 RSA 2048: 3 RSA2: 1 SHA-1: 14 SHA2- 256: 47 SHA2- 384: 3 SHA2- 512: 20 SHA2-256: 30 SHA2-384: 7 SHA2-512: 13	Certlike: AES (128: 1 AES CBC 128/192/256: 1 AES1: 1 HMAC SHA-256: 2 HMAC-SHA-1: 4 HMAC-SHA-512: 2 HMAC-SHA1: 4 RSA 2048: 9 RSA 4096: 4 SHA 1, 256: 1 SHA 256: 5 SHA 384: 2 SHA 512: 2 SHA-1: 7 SHA-2-384: 1 SHA-2-512: 2 SHA-224: 2 SHA-256: 9 SHA-384: 2 SHA-512: 2 SHA2-384: 1 SHA2-512: 1
pdf_data/keywords/vendor
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 42 AES-: 3 CAST: CAST: 5 constructions: MAC: CMAC: 6 HMAC: 26 miscellaneous: Blowfish: Blowfish: 2	AES_competition: AES: AES: 5 CAST: CAST: 1 DES: 3DES: Triple-DES: 11 constructions: MAC: HMAC: 14 HMAC-SHA-256: 1 miscellaneous: Blowfish: Blowfish: 1
pdf_data/keywords/asymmetric_crypto	ECC: ECDH: ECDH: 19 ECDSA: ECDSA: 44 FF: DH: DH: 20 Diffie-Hellman: 3 DSA: DSA: 3 RSA: RSA 2048: 3	ECC: ECC: ECC: 1 ECDH: ECDH: 10 ECDSA: ECDSA: 17 FF: DH: DH: 2 Diffie-Hellman: 8 DSA: DSA: 2 RSA: RSA 2048: 9 RSA 4096: 4
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	SHA: SHA1: SHA-1: 14	MD: MD5: MD5: 1 SHA: SHA1: SHA-1: 7 SHA2: SHA-224: 2 SHA-256: 12 SHA-512: 3
pdf_data/keywords/crypto_scheme	KA: Key Agreement: 6	KA: Key Agreement: 1 KEX: Key Exchange: 1
pdf_data/keywords/crypto_protocol	SSH: SSH: 85 SSHv2: 4	SSH: SSH: 36 SSHv2: 2
pdf_data/keywords/randomness	PRNG: DRBG: 14 RNG: RBG: 13	PRNG: DRBG: 10 RNG: RNG: 2
pdf_data/keywords/cipher_mode	CBC: CBC: 13 CTR: CTR: 7 ECB: ECB: 8 GCM: GCM: 18	CBC: CBC: 3 CTR: CTR: 2 ECB: ECB: 1
pdf_data/keywords/ecc_curve	NIST: P-256: 66 P-384: 36 P-512: 4 P-521: 20 prime256v1: 2	NIST: P-256: 32 P-384: 14 P-521: 16
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library	OpenSSL: OpenSSL: 1	OpenSSL: OpenSSL: 4
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/device_model
pdf_data/keywords/tee_name	AMD: PSP: 7 IBM: SSC: 11
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140-3: 11 FIPS186-4: 7 ISO: ISO/IEC 24759: 2 NIST: NIST SP 800-108: 1 NIST SP 800-90B: 4 SP 800-108: 6 SP 800-38A: 1 SP 800-38D: 3 SP 800-38F: 1 SP 800-90B: 1 X509: X.509: 2	FIPS: FIPS 140-2: 12 FIPS PUB 140-2: 1 FIPS140-2: 1 NIST: SP 800-135: 2 SP 800-67: 1 SP 800-90A: 2 RFC: RFC 4253: 1 X509: X.509: 2
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: Aniket Ingle Intertek /CreationDate: D:20231228174130+05'30' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20231228174130+05'30' /Producer: Microsoft® Word for Microsoft 365 pdf_file_size_bytes: 802436 pdf_hyperlinks: https://csrc.nist.gov/projects/cryptographic-module-validation-program, https://www.acumensecurity.net/ pdf_is_encrypted: False pdf_number_of_pages: 54	/Author: Jennifer Brady /CreationDate: D:20210115155259-05'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20210115155259-05'00' /Producer: Microsoft® Word for Microsoft 365 /Subject: FIPS 140-2 Security Policy Template pdf_file_size_bytes: 734712 pdf_hyperlinks: https://www.juniper.net/support/downloads/junos.html, https://www.juniper.net/assets/us/en/local/pdf/datasheets/1000467-en.pdf, http://www.juniper.net/ pdf_is_encrypted: False pdf_number_of_pages: 28
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	Interim validation. When operated in Approved mode. When installed, initialized and configured as specified in Section 11 of the Security Policy. No assurance of minimum security of SSPs (e.g., keys, bit strings) that are externally loaded, or of SSPs established with externally loaded SSPs.	When operated in FIPS mode, installed, initialized and configured as specified in Sections 1.2 and 6 of the Security Policy
web_data/certificate_pdf_url		https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/February 2021_010321_1145_signed.pdf
web_data/date_sunset	06.02.2027	22.02.2026
web_data/description	The cryptographic module provides for an encrypted connection, using SSH, between the management station and the module. The cryptographic module also provides for an encrypted connection, using MACsec, between devices.	EX4300 line of Ethernet switches provide full suite of Layer2 and Layer 3 switching capabilities. EX4300-48MP supports 100 Mbps, 1Gbps, 2.5 Gbps, 5 Gbps and 10Gbps speeds on access ports and PoE++ devices.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Roles, services, and authentication: Level 3, Non-invasive security: N/A, Mitigation of other attacks: N/A	Roles, Services, and Authentication: Level 3, Design Assurance: Level 3, Mitigation of Other Attacks: N/A
web_data/fw_versions	[]	J, u, n, o, s, , O, S, , 1, 9, ., 4, R, 1
web_data/historical_reason	None	None
web_data/hw_versions	[]	E, X, 4, 3, 0, 0, -, 4, 8, M, P
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	Juniper Networks EX4300-48MP Ethernet Switch	Juniper Networks EX4300-48MP Ethernet Switch
web_data/module_type	Hardware	Hardware
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-3	FIPS 140-2
web_data/status	active	active
web_data/sw_versions	None	None
web_data/tested_conf	[]	[]
web_data/validation_history	date: 07.02.2025 lab: ACUMEN SECURITY, LLC validation_type: Initial	date: 23.02.2021 lab: ACUMEN SECURITY, LLC validation_type: Initial
web_data/vendor	Juniper Networks, Inc.	Juniper Networks, Inc.
web_data/vendor_url	http://www.juniper.net	http://www.juniper.net/