Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Performing Self-Test

The cryptographic module enforces security rules to ensure that the Juniper Networks Junos OS Evolved in FIPS mode meets the security requirements of FIPS 140-3 Level 1. To validate the output of cryptographic algorithms approved for FIPS and test the integrity of some system modules, the device performs series of known answer test (KAT) self-tests.

Self-tests are executed in the background with no output unless there is a failure. If there is a failure, the module will core dump. You can view the core dump details using the show system core-dumps CLI command. The TOE will detect the failure of the services that aborted and restart them.

You can view the self test logs by executing /usr/bin/openssl fipsinstall -module /usr/lib64/ossl-modules/fips.so -out /tmp/fips.cnf -provider_name fips on the device shell. An example for the self-tests details are as follows:

Use of any of other cryptographic implementations was not evaluated nor tested during the CC evaluation of the TOE.