U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #2144

Details

Module Name
FortiGate-3950B/3951B
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
05/06/2014;07/24/2014
Overall Level
2
Caveat
When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
FortiGate Multi-Threat Security Solutions are dedicated, hardware-based devices that deliver complete content protection against blended threats at the network perimeter or within the internal network.
FIPS Algorithms
AES Certs. #2278, #2607 and #2608
HMAC Certs. #1396, #1615 and #1616
RNG Cert. #1234
RSA Certs. #1169 and #1334
SHS Certs. #1959, #2191 and #2192
Triple-DES Certs. #1425, #1572 and #1573
Other Algorithms
DES; MD5; HMAC-MD5; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112-bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112-bits of encryption strength)
Hardware Versions
FortiGate-3950B and FortiGate-3951B with SKU-FIPS-SEAL-RED
Firmware Versions
FortiOS v4.0, build3830, 131223

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, Ontario K2H 8G3
Canada

Alan Kaye
Phone: 613-225-9381 x7416
Fax: 613-225-2951

Lab

EWA
NVLAP Code: 200556-0