Zeroize the System to Clear System Data for FIPS Mode
Zeroization is a security process used in computing and cryptography to securely erase sensitive data from memory, storage devices, or cryptographic modules. The goal is to prevent unauthorized access to this data ensuring that not even the most advanced forensic techniques cannot recover or reconstruct the data.
In FIPS mode, the Security Administrator initiates zeroization. Zeroization completely erases all configuration information about the Routing Engines, including all plain-text passwords, secrets, private keys for SSH, local encryption details, and local authentication details.
Note that, in reference to cryptographic key destruction, TOE does not support delayed key destruction.
Perform system zeroization with care. Zeroization eliminates all data from the Routing Engine and the device returns to the factory-default state, without any configured users or configuration files.
Why Zeroize Your Device for FIPS Mode?
For FIPS 140-3 compliance, you must zeroize the system to remove sensitive information before enabling or disabling FIPS mode on the device.
You must enter or reenter all the critical security parameters (CSPs) on your devices in FIPS mode to consider it as a valid FIPS cryptographic module.
When to Zeroize Your Device for FIPS Mode?
You can zeroize the device:
Before enabling FIPS mode of operation: Perform zeroization before enabling FIPS mode to prepare your device to operate as a FIPS cryptographic module.
Before disabling FIPS mode of operation: Perform zeroization before disabling FIPS mode on the device to begin repurposing your device for non-FIPS operation.
Note:Juniper Networks does not support non-FIPS software installation in a FIPS environment, but doing so might be necessary in certain test environments. Make sure to zeroize the device first.
Zeroize the System for FIPS Mode
Follow this procedure to zeroize your device:
- Log in to the device as Security Administrator from the CLI, then
enter:
security-administrator@host> request vmhost zeroize no-forwarding VMHost Zeroization : Erase all data, including configuration and log files ? [yes,no] (no) yes
To initiate the zeroization process, type yes at the prompts:
Erase all data, including configuration and log files? [yes, no] (no) yes VMHost Zeroization : Erase all data, including configuration and log files ? [yes,no] (no) yes warning: Vmhost will reboot and may not boot without configuration warning: Proceeding with vmhost zeroize Zeroise secondary internal disk ... Proceeding with zeroize on secondary disk Mounting device in preparation for zeroize... Cleaning up target disk for zeroize ... Zeroize done on target disk. Zeroize of secondary disk completed Zeroize primary internal disk ... Proceeding with zeroize on primary disk /etc/ssh/ssh_host_ecdsa_key.pub /etc/ssh/ssh_host_rsa_key.pub /etc/ssh/ssh_host_ecdsa_key /etc/ssh/ssh_host_dsa_key /etc/ssh/ssh_host_dsa_key.pub /etc/ssh/ssh_host_rsa_key Mounting device in preparation for zeroize... Cleaning up target disk for zeroize ... Zeroize done on target disk. Zeroize of primary disk completed Zeroize done warning: Proceeding with vmhost reboot Initiating vmhost reboot...
The entire operation can take considerable time depending on the size of the media, but the system removes all the CSPs within a few seconds. The physical environment must remain secure until the zeroization process is complete.