U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1431

Details

Module Name
FortiOS
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
11/03/2010
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Tested: FortiGate-80C
  • FortiGate-200B
  • FortiGate-310B
  • FortiGate-620B
  • FortiGate-800
  • FortiGate-1240B
  • FortiGate-3016B
  • FortiGate-3600A
  • FortiGate-3810A-E4
  • FortiGate-5001A-DW
Module Type
Firmware
Embodiment
Multi-chip standalone
Description
The FortiOS is a firmware based operating system that runs exclusively on FortinetÆs FortiGate/FortiWiFi product family (PC-based, purpose built appliances)The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.
FIPS Algorithms
AES Certs. #1404 and #1409
HMAC Certs. #825 and #830
RNG Cert. #770
RSA Cert. #686
SHS Certs. #1274 and #1279
Triple-DES Certs. #957 and #962
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment method provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; HMAC-MD5; SHA-256 (non-compliant); HMAC SHA-256 (non-compliant)
Firmware Versions
FortiOS 4.0, build6341, 100617

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3
Canada

Jeff Lake, Vice President, Federal Operations
jlake@fortinet.com
Phone: 678-402-8021
Fax: 678-402-8021

Lab

DOMUS
NVLAP Code: 200017-0