| cert_id |
4663 |
3737 |
| dgst |
731c883e561fe35d |
f021014960c5f61b |
| heuristics/algorithms |
CVL#C1085, CVL#C1084, DRBG#C1085, HMAC#C1109, HMAC#C1129, Triple-DES#C1085, RSA#C1151, DRBG#C1079, DRBG#C1084, SHS#C1079, SHS#C1109, HMAC#C1084, HMAC#C1085, CVL#C1111, ECDSA#C1151, AES#C1107, SHS#C1129, DRBG#C1106, Triple-DES#C1109, SHS#C1106, AES#C1085, CVL#C1113, RSA#C1110, SHS#C1085, HMAC#C1079, AES#C1129, KTS#C1107, ECDSA#C1107, AES#C1109, SHS#C1084, AES#C1084, SHS#C1052, HMAC#C1106, RSA#C1107, SHS#C1107, DRBG#C1107, Triple-DES#C1107, Triple-DES#C1129, HMAC#C1052, ECDSA#C1085, HMAC#C1107, Triple-DES#C1084 |
CVL#C1085, CVL#C1084, DRBG#C1085, HMAC#C1109, HMAC#C1129, Triple-DES#C1085, RSA#C1151, DRBG#C1079, DRBG#C1084, SHS#C1079, SHS#C1109, HMAC#C1084, HMAC#C1085, CVL#C1111, ECDSA#C1151, AES#C1107, SHS#C1129, DRBG#C1106, Triple-DES#C1109, SHS#C1106, AES#C1085, CVL#C1113, RSA#C1110, SHS#C1085, HMAC#C1079, AES#C1129, KTS#C1107, ECDSA#C1107, AES#C1109, SHS#C1084, AES#C1084, SHS#C1052, HMAC#C1106, RSA#C1107, SHS#C1107, DRBG#C1107, Triple-DES#C1107, Triple-DES#C1129, HMAC#C1052, ECDSA#C1085, HMAC#C1107, Triple-DES#C1084 |
| heuristics/cpe_matches |
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:* |
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*, cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:* |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/extracted_versions |
19.2 |
19.2 |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/module_processed_references/directly_referenced_by |
{} |
{} |
| heuristics/module_processed_references/directly_referencing |
{} |
{} |
| heuristics/module_processed_references/indirectly_referenced_by |
{} |
{} |
| heuristics/module_processed_references/indirectly_referencing |
{} |
{} |
| heuristics/module_prunned_references |
{} |
{} |
| heuristics/policy_processed_references/directly_referenced_by |
{} |
{} |
| heuristics/policy_processed_references/directly_referencing |
{} |
{} |
| heuristics/policy_processed_references/indirectly_referenced_by |
{} |
{} |
| heuristics/policy_processed_references/indirectly_referencing |
{} |
{} |
| heuristics/policy_prunned_references |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| pdf_data/keywords/fips_cert_id |
|
|
| pdf_data/keywords/fips_security_level |
- Level:
- Level 1: 1
- Level 2: 2
- level 1: 1
- level 2: 1
|
- Level:
- Level 1: 1
- Level 2: 2
- level 1: 1
- level 2: 1
|
| pdf_data/keywords/fips_certlike |
- Certlike:
- AES CBC 128/192/256: 5
- AES GCM19: 1
- DRBG 2: 1
- HMAC SHA-1: 1
- HMAC SHA-256: 5
- HMAC-SHA- 256: 6
- HMAC-SHA- 38425: 2
- HMAC-SHA-1: 4
- HMAC-SHA-1- 96: 2
- HMAC-SHA-256: 6
- HMAC-SHA-384: 2
- HMAC-SHA-512: 2
- HMAC-SHA1- 96: 1
- RSA 2048: 17
- RSA 3072: 2
- RSA 4096: 11
- SHA 1, 256: 1
- SHA 256: 12
- SHA 384: 2
- SHA 512: 1
- SHA-1: 11
- SHA-256: 18
- SHA-384: 5
- SHA-512: 3
|
- Certlike:
- AES CBC 128/192/256: 5
- DES10: 1
- DRBG 2: 1
- HMAC SHA-1: 1
- HMAC SHA-256: 5
- HMAC-SHA- 38428: 2
- HMAC-SHA-1: 4
- HMAC-SHA-1-96: 2
- HMAC-SHA-256: 12
- HMAC-SHA-384: 2
- HMAC-SHA-512: 2
- HMAC-SHA1-96: 1
- RSA 2048: 17
- RSA 3072: 2
- RSA 4096: 11
- SHA 1, 256: 1
- SHA 256: 12
- SHA 384: 2
- SHA 512: 1
- SHA-1: 11
- SHA-256: 18
- SHA-384: 5
- SHA-512: 3
|
| pdf_data/keywords/vendor |
|
|
| pdf_data/keywords/eval_facility |
|
|
| pdf_data/keywords/symmetric_crypto |
- AES_competition:
- DES:
- 3DES:
- TDEA: 1
- TDES: 3
- Triple-DES: 31
- DES:
- constructions:
- MAC:
- HMAC: 27
- HMAC-SHA-256: 3
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
- miscellaneous:
|
- AES_competition:
- DES:
- 3DES:
- TDEA: 1
- TDES: 3
- Triple-DES: 31
- DES:
- constructions:
- MAC:
- HMAC: 27
- HMAC-SHA-256: 6
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
- miscellaneous:
|
| pdf_data/keywords/asymmetric_crypto |
- ECC:
- FF:
- RSA:
- RSA 2048: 17
- RSA 3072: 2
- RSA 4096: 11
|
- ECC:
- FF:
- DH:
- DH: 13
- Diffie-Hellman: 34
- DSA:
- RSA:
- RSA 2048: 17
- RSA 3072: 2
- RSA 4096: 11
|
| pdf_data/keywords/pq_crypto |
|
|
| pdf_data/keywords/hash_function |
- MD:
- SHA:
- SHA1:
- SHA2:
- SHA-256: 23
- SHA-384: 3
- SHA-512: 3
|
- MD:
- SHA:
- SHA1:
- SHA2:
- SHA-256: 23
- SHA-384: 3
- SHA-512: 3
|
| pdf_data/keywords/crypto_scheme |
|
|
| pdf_data/keywords/crypto_protocol |
- IKE:
- IKE: 33
- IKEv1: 6
- IKEv2: 9
- IPsec:
- SSH:
- VPN:
|
- IKE:
- IKE: 33
- IKEv1: 5
- IKEv2: 8
- IPsec:
- SSH:
- VPN:
|
| pdf_data/keywords/randomness |
|
|
| pdf_data/keywords/cipher_mode |
|
|
| pdf_data/keywords/ecc_curve |
- NIST:
- P-256: 50
- P-384: 20
- P-512: 2
- P-521: 6
|
- NIST:
- P-256: 54
- P-384: 22
- P-512: 2
- P-521: 10
|
| pdf_data/keywords/crypto_engine |
|
|
| pdf_data/keywords/tls_cipher_suite |
|
|
| pdf_data/keywords/crypto_library |
|
|
| pdf_data/keywords/vulnerability |
|
|
| pdf_data/keywords/side_channel_analysis |
|
|
| pdf_data/keywords/device_model |
|
|
| pdf_data/keywords/tee_name |
|
|
| pdf_data/keywords/os_name |
|
|
| pdf_data/keywords/cplc_data |
|
|
| pdf_data/keywords/ic_data_group |
|
|
| pdf_data/keywords/standard_id |
- FIPS:
- FIPS 140-2: 7
- FIPS PUB 140-2: 1
- FIPS140-2: 1
- NIST:
- SP 800-131A: 8
- SP 800-135: 2
- SP 800-67: 4
- SP 800-90A: 7
- RFC:
- RFC 2409: 1
- RFC 4253: 1
- RFC4106: 2
- RFC5282: 1
- RFC7296: 1
- X509:
|
- FIPS:
- FIPS 140-2: 7
- FIPS PUB 140-2: 1
- FIPS140-2: 1
- NIST:
- SP 800-131A: 8
- SP 800-135: 2
- SP 800-56A: 1
- SP 800-67: 4
- SP 800-90A: 7
- RFC:
- RFC 2409: 1
- RFC 4253: 1
- RFC4106: 2
- RFC5282: 1
- RFC7296: 1
- X509:
|
| pdf_data/keywords/javacard_version |
|
|
| pdf_data/keywords/javacard_api_const |
|
|
| pdf_data/keywords/javacard_packages |
|
|
| pdf_data/keywords/certification_process |
|
|
| pdf_data/policy_metadata |
- /CreationDate: D:20231120155927-05'00'
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId: 15f92b67-224a-415d-a546-8cebb245dcaf
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application: Microsoft Azure Information Protection
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled: True
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method: Automatic
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name: Juniper Business Use Only
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner: [email protected]
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate: 2019-06-28T05:46:17.5561117Z
- /MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId: bea78b3c-4cdb-4130-854a-1d193232e5f4
- /MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_ActionId: 4d5b3dfd-af97-4f3c-ab52-629a9500ec32
- /MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_ContentBits: 0
- /MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Enabled: true
- /MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Method: Privileged
- /MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_Name: Unrestricted
- /MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_SetDate: 2023-11-20T20:59:02Z
- /MSIP_Label_c968a81f-7ed4-4faa-9408-9652e001dd96_SiteId: b64da4ac-e800-4cfc-8931-e607f720a1b8
- /ModDate: D:20231120155927-05'00'
- pdf_file_size_bytes: 4059214
- pdf_hyperlinks: https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31476, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31526, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31506, http://www.juniper.net/assets/us/en/local/pdf/datasheets/1000550-en.pdf, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31482, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31507, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31504, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31449, https://www.juniper.net/documentation/en_US/release-independent/junos/information-products/pathway-pages/hardware/SRX550/srx550-hm-index.pdf, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31503, http://www.juniper.net/assets/us/en/local/pdf/datasheets/1000254-en.pdf, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31481, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31548, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=31508
- pdf_is_encrypted: False
- pdf_number_of_pages: 52
|
- /Author: tsengjk
- /CreationDate: D:20201023110902-04'00'
- /Creator: Nuance PDF Create
- /ModDate: D:20201023110930-04'00'
- /Producer: Nuance PDF Create
- /Title: Microsoft Word - Junos 19.2R1 SRX3xx_SRX550M_SRX5400_5600_5800_Security_Policy.docx
- pdf_file_size_bytes: 3998608
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 53
|
| state/module_download_ok |
True |
True |
| state/module_extract_ok |
True |
True |
| state/policy_convert_garbage |
False |
False |
| state/policy_convert_ok |
True |
True |
| state/policy_download_ok |
True |
True |
| state/policy_extract_ok |
True |
True |
| state/policy_pdf_hash |
Different |
Different |
| state/policy_txt_hash |
Different |
Different |
| web_data/caveat |
When operated in FIPS mode, installed, initialized and configured as specified in Sections 1.2 and 5 of the Security Policy |
When operated in FIPS mode, installed, initialized and configured as specified in Sections 1.2 and 5 of the Security Policy |
| web_data/certificate_pdf_url |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2023_111223_0648_signed.pdf |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/October 2020_021120_0702_signed.pdf |
| web_data/date_sunset |
26.10.2025 |
|
| web_data/description |
The Juniper Networks SRX Series Services Gateways are a series of secure routers that provide essential capabilities to connect, secure, and manage work force locations sized from handfuls to hundreds of users. By consolidating fast, highly available switching, routing, security, and applications capabilities in a single device, enterprises can economically deliver new services, safe connectivity, and a satisfying end user experience. |
The Juniper Networks SRX Series Services Gateways are a series of secure routers that provide essential capabilities to connect, secure, and manage work force locations sized from handfuls to hundreds of users. By consolidating fast, highly available switching, routing, security, and applications capabilities in a single device, enterprises can economically deliver new services, safe connectivity, and a satisfying end user experience. |
| web_data/embodiment |
Multi-Chip Stand Alone |
Multi-Chip Stand Alone |
| web_data/exceptions |
Roles, Services, and Authentication: Level 3, Design Assurance: Level 3, Mitigation of Other Attacks: N/A |
Roles, Services, and Authentication: Level 3, Design Assurance: Level 3, Mitigation of Other Attacks: N/A |
| web_data/fw_versions |
J, U, N, O, S, , O, S, , 1, 9, ., 2, R, 1 |
J, U, N, O, S, , O, S, , 1, 9, ., 2, R, 1 |
| web_data/historical_reason |
|
SP 800-56Arev3 transition - replaced by certificate #4663 |
| web_data/hw_versions |
[, S, R, X, 3, 0, 0, ,, , S, R, X, 3, 2, 0, ,, , S, R, X, 3, 4, 0, ,, , S, R, X, 3, 4, 5, ,, , S, R, X, 3, 4, 5, -, D, U, A, L, -, A, C, ,, , S, R, X, 5, 5, 0, M, ,, , S, R, X, 5, 4, 0, 0, ,, , S, R, X, 5, 6, 0, 0, , a, n, d, , S, R, X, 5, 8, 0, 0, ], , w, i, t, h, , J, N, P, R, -, F, I, P, S, -, T, A, M, P, E, R, -, L, B, L, S |
[, S, R, X, 3, 0, 0, ,, , S, R, X, 3, 2, 0, ,, , S, R, X, 3, 4, 0, ,, , S, R, X, 3, 4, 5, ,, , S, R, X, 3, 4, 5, -, D, U, A, L, -, A, C, ,, , S, R, X, 5, 5, 0, ,, , S, R, X, 5, 4, 0, 0, ,, , S, R, X, 5, 6, 0, 0, , a, n, d, , S, R, X, 5, 8, 0, 0, ], , w, i, t, h, , J, N, P, R, -, F, I, P, S, -, T, A, M, P, E, R, -, L, B, L, S, |
| web_data/level |
2 |
2 |
| web_data/mentioned_certs |
|
|
| web_data/module_name |
Juniper Networks SRX300, SRX320, SRX340, SRX345, SRX345-DUAL-AC, SRX550M, SRX5400, SRX5600 and SRX5800 Services Gateways |
Juniper Networks SRX300, SRX320, SRX340, SRX345, SRX345-DUAL-AC, SRX550M, SRX5400, SRX5600 and SRX5800 Services Gateways |
| web_data/module_type |
Hardware |
Hardware |
| web_data/revoked_link |
None |
None |
| web_data/revoked_reason |
None |
None |
| web_data/standard |
FIPS 140-2 |
FIPS 140-2 |
| web_data/status |
active |
historical |
| web_data/sw_versions |
None |
None |
| web_data/tested_conf |
[] |
[] |
| web_data/validation_history |
- date: 28.11.2023
- lab: LEIDOS CSTL
- validation_type: Initial
|
- date: 27.10.2020
- lab: LEIDOS CSTL
- validation_type: Initial
|
| web_data/vendor |
Juniper Networks, Inc |
Juniper Networks, Inc |
| web_data/vendor_url |
http://www.juniper.net |
http://www.juniper.net |