U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1832

Details

Module Name
FortiGate-60C [1], FortiGate-110C [2] and FortiGate-111C [3]
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
11/07/2012
Overall Level
2
Caveat
When operated in FIPS mode and with the tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
The FortiGate product family spans the full range of network environments, from SOHO to service provider, offering cost effective systems for any size of application. FortiGate appliances detect and eliminate the most damaging, content-based threats from email and Web traffic such as viruses, worms, intrusions, inappropriate Web content and more in real time - without degrading network performance.
FIPS Algorithms
AES Certs. #1408, #1899, and #1900
HMAC Certs. #829, #1139 and #1140
RNG Cert. #996
RSA Certs. #685 and #973
SHS Certs. #1278, #1668 and #1669
Triple-DES Certs. #961, #1234 and #1235
Other Algorithms
DES; SHA-256 (non-compliant); HMAC-SHA-256 (non-compliant); MD5; HMAC-MD5; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 196 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
C4DM93 [1], C4HA15 [2] and C4BQ31 [3] with Tamper Evident Seal Kit: FIPS-SEAL-RED [1] or FIPS-SEAL-BLUE [2,3]
Firmware Versions
FortiOS 4.0, build8892, 111128

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, Ontario K2H 8G3
Canada

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381

Lab

CSC
NVLAP Code: 200996-0