SRX platforms with Junos OS 15.1X49 complete FIPS 140-2 certification
Jan 8, 2018
More than 20 years ago, the National Institute of Standards and Technology (NIST) established the Cryptographic Module Validation Program (CMVP) to validate cryptographic modules to Federal Information Processing Standards (FIPS) 140-1 and then later 140-2 standards. The CMVP is a collaborative effort between NIST and the Canadian Communications Security Establishment (CSE). Modules validated as conforming to FIPS 140-2 are accepted by the federal government agencies of both the US and Canada for the protection of sensitive information.
Last week, the latest generation of branch SRX completed their first FIPS 140-2 certifications. The SRX300 family (SRX300, SRX320, SRX340, SRX345) and SRX550-M were certified with Junos OS 15.1X49.
Earlier in 2017, Juniper Networks SRX5400, SRX5600, and SRX5800 devices completed their fifth successive National Institute of Standards and Technology (NIST) Federal Information Processing Standards (FIPS) 140-2 certification. These most recent certifications were with Junos OS 15.1X49 software.
SRX platforms with Junos 15.1X49 introduce FIPS mode, which simplifies FIPS compliance. Instead of a special software image, FIPS mode is a simple configuration setting to the standard Junos OS image.
SRX devices provide a foundation for implementing a wide array of high performance security protection, including UTM services, next-generation firewall, and dynamic threat defense and intelligence. The application and content awareness of SRX series platforms, combined with the advanced routing capabilities in Junos OS enables enterprises to implement SD-WAN functionality and security.