Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Performing Self-Test

The cryptographic module enforces security rules to ensure that the Juniper Networks Junos OS Evolved in FIPS mode meets the security requirements of FIPS 140-3 Level 1. To validate the output of cryptographic algorithms approved for FIPS and test the integrity of some system modules, the device performs series of known answer test (KAT) self-tests. If a failure occurs, the system logs an error in the syslog messages and results in a FIPS error status. A device reboot may be required to recover the device.

You can view the self test details for MACsec library from syslog messages using the file show /var/log/filename | match FIPS command:

You can view the self test details for MACsec chip using the show trace application securityd | match KAT command: