Module Name
FortiGate-200B [1], FortiGate-300A [2], FortiGate-300A-HD [3], FortiGate-310B [4], FortiGate-311B [5], FortiGate-620B [6] and FortiGate-800 [7]
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode and with the tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
- Cryptographic Module Ports and Interfaces: Level 3
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
Embodiment
Multi-chip standalone
Description
FortiGate Multi-Threat Security Solutions are dedicated, hardware-based devices that deliver complete content protection against blended threats at the network perimeter or within the internal network.
Approved Algorithms
AES |
Certs. #1404, #1405, #1408, #1409 and #1463 |
HMAC |
Certs. #825, #826, #829, #830 and #862 |
RNG |
Cert. #770 |
RSA |
Certs. #685 and #686 |
SHS |
Certs. #1274, #1275, #1278, #1279 and #1327 |
Triple-DES |
Certs. #957, #958, #961, #962 and #987 |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; HMAC-MD5; SHA-256 (non-compliant); HMAC-SHA-256 (non-compliant)
Hardware Versions
C4CD24 [1], C4FK88 [2], C4FK88 [3], C4ZF35 [4], C4CI39 [5], C4AK26 [6] and C4UT39 [7]
Firmware Versions
FortiOS 4.0, build6359, 100712