Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #2366


Module Name
FortiGate-60C/60D/80C and FortiWiFi-60C/60D
FIPS 140-2
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy and configured according to the Entropy Token Section of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy. There is no assurance of the minimum strength of generated keys
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
Module Type
Multi-chip standalone
The FortiGate product family spans the full range of network environments, from SOHO to service provider, offering cost effective systems for any size of application. FortiGate appliances detect and eliminate the most damaging, content-based threats from email and Web traffic such as viruses, worms, intrusions, inappropriate Web content and more in real time - without degrading network performance.
Approved Algorithms
AES Certs. #3166, #3167, #3169 and #3171
CVL Certs. #415 and #416
DRBG Cert. #652
HMAC Certs. #1994, #1995, #1997 and #1999
RSA Certs. #1604, #1605, and #1607
SHS Certs. #2619, #2620, #2622 and #2624
Triple-DES Certs. #1804, #1805, #1807 and #1808
Other Algorithms
AES-CCM (non-compliant); Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 132 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; HMAC-MD5; NDRNG
Hardware Versions
C4DM93 [1], C1AB28 [2], C4BC61[3], C4DM95 [4], and C1AB32 [5] with Tamper Evident Seal Kits: FIPS-SEAL-BLUE [3] or FIPS-SEAL-RED [1,2,4,5]
Firmware Versions
5.0, build0305, 141216


Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3

Alan Kaye
Phone: 613-225-9381 x7416
Fax: 613-225-2951

Validation History

Date Type Lab
5/4/2015 Initial CGI Information Systems & Management Consultants Inc