We are pleased to report that the SRX family devices with Junos 12.3X48 recently completed certification against relevant NIAP protection profiles.
This certification is the first Common Criteria Certification against the NIAP Intrusion Protection System Extended Package.
The SRX1400, SRX3400, and SRX3600 were certified against the NIAP Network Device Protection Profile plus the Firewall and the Intrusion Protection System extended packages.
The Security Target for these devices is located here.
The Certification Report can be found here.
The SRX100-650 and the SRX5400-5800 were certified against the NIAP Network Device Protection Profile plus the Firewall, Intrustion Protection Systems, and the IPsec Gateway VPN Extended Packages.
The Security Target for these devices is located here.
The Certification Report can be found here.
These certifications join other Juniper Networks certifications that can be found on the NIAP Product Compliant List at this link.
Listing on the NIAP PCL is required by Federal policy for many different cases. First, as the NIAP PCL webpage states- “U.S. Customers (designated approving authorities, authorizing officials, integrators, etc.) may treat these mutually-recognized evaluation results as complying with the Committee on National Security Systems Policy (CNSSP) 11 National Policy Governing the Acquisition of Information Assurance (IA) and IA-Enabled Information Technology (IT) Products - dated June 2013 (https://www.cnss.gov/policies.html)”.
CNSSP 11 applies to any US Government system carrying classified data at any level and to systems carrying certain command and control traffic regardless of the classification.
NIAP PCL listing is required by the DISA Security Technical Implementation Guide (STIG)s for many product categories. NIAP PCL listing is required for DoD Cloud providers who are handling Impact Level 5 and 6 information, and in other Federal Government acquisitions that require the NIST 800-53, rev 4- SA-4 (7) control.