U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #2105

Details

Module Name
FortiAnalyzer 4.0 MR3
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
03/19/2014
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
  • Tested: FortiAnalyzer 4000-B with FortiAnalyzer v4.0, build3059, 130918
Module Type
Firmware
Embodiment
Multi-chip standalone
Description
The FortiAnalyzer family of logging, analyzing, and reporting appliances securely aggregate log data from Fortinet devices and other syslog-compatible devices. Using a comprehensive suite of customizable reports, users can filter and review records, including traffic, event, virus, attack, Web content, and email data.
FIPS Algorithms
AES Cert. #2681
HMAC Certs. #1667 and #1668
RNG Cert. #1251
RSA Cert. #1030
SHS Certs. #2251 and #2252
Triple-DES Certs. #1608 and #1609
Other Algorithms
Diffie-Hellman (non-compliant); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; HMAC-MD5
Firmware Versions
v4.0, build3059, 130918

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, Ontario K2H 8G3
Canada

Alan Kaye
Phone: 613-225-9381 x7416
Fax: 613-225-2951

Lab

EWA
NVLAP Code: 200556-0