Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Juniper Linux Kernel Cryptographic Module Overview

Junos OS Evolved Linux Kernel Cryptographic API Module version 2.0 provides cryptographic services to kernel applications through C language Application Program Interface (API) and to applications that run in a user space through an AF_ALG socket type interface. The module utilizes instructions from processor to optimize and increase the performance of cryptographic algorithms.

Cryptographic Boundary

The Cryptographic Logical Boundary for kernel consists of all kernel objects and integrity check files used to perform integrity tests.

Supported Cryptographic Algorithms

You must use FIPS approved cryptographic algorithms in FIPS mode. If you use non-approved algorithms the system would not be in a FIPS certified state.

Table 3 Approved Algorithms, Page No. 10 lists all the approved security functions of the module, including specific key strengths employed for approved services.