Cryptographic Module Validation Program CMVP

Certificate #2528

Details

Module Name
FortiAnalyzer-3000D
Standard
FIPS 140-2
Status
Active
Sunset Date
1/9/2021
Validation Dates
01/10/2016
Overall Level
2
Caveat
When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy and configured according to the Entropy Token Section of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy. There is no assurance of the minimum strength of generated keys
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The FortiAnalyzer family of logging, analyzing, and reporting appliances securely aggregate log data from Fortinet devices and other syslog-compatible devices. Using a comprehensive suite of customizable reports, users can filter and review records, including traffic, event, virus, attack, Web content, and email data.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Cert. #3595
CVL Cert. #617
DRBG Cert. #930
HMAC Cert. #2292
RSA Cert. #1849
SHS Cert. #2957
Triple-DES Cert. #2002
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; HMAC-MD5
Hardware Versions
C1AA61-03AA-0000 with Tamper Evident Seal Kits: FIPS-SEAL-RED
Firmware Versions
v5.2.4-build0738 150923(GA)

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3
Canada

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381
Fax: 613-225-2951

Lab

CGI IT Security Evaluation & Test Facility
NVLAP Code: 200928-0