Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #2115

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

FortiAnalyzer-4000B

Standard

FIPS 140-2

Status

Historical

Historical Reason

RNG SP800-131A Revision 1 Transition

Overall Level

Caveat

When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy

Security Level Exceptions

Roles, Services, and Authentication: Level 3
Design Assurance: Level 3
Mitigation of Other Attacks: N/A

Module Type

Hardware

Embodiment

Multi-chip standalone

Description

The FortiAnalyzer family of logging, analyzing, and reporting appliances securely aggregate log data from Fortinet devices and other syslog-compatible devices. Using a comprehensive suite of customizable reports, users can filter and review records, including traffic, event, virus, attack, Web content, and email data.

Approved Algorithms

AES	Cert. #2681
HMAC	Certs. #1667 and #1668
RNG	Cert. #1251
RSA	Cert. #1030
SHS	Certs. #2251 and #2252
Triple-DES	Certs. #1608 and #1609

Other Algorithms

Diffie-Hellman (non-compliant); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; HMAC-MD5

Hardware Versions

4000-B with SKU-FIPS-SEAL-RED

Firmware Versions

v4.0, build3059, 130918

Product URL

http://www.fortinet.com/products

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, Ontario K2H 8G3
Canada

Alan Kaye
Phone: 613-225-9381 x7416
Fax: 613-225-2951

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
3/26/2014	Initial	EWA CANADA