U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #2370

Details

Module Name
FortiOS™ 5.0
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list due to sunsetting
Validation Dates
05/04/2015
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. There is no assurance of the minimum strength of generated keys
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Tested: FortiGate-300C with the Fortinet entropy token (part number FTR-ENT-1)
Module Type
Firmware
Embodiment
Multi-chip standalone
Description
The FortiOS is a firmware based operating system that runs exclusively on Fortinet's FortiGate/FortiWiFi product family. The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.
FIPS Algorithms
AES Certs. #3169 and #3171
CVL Certs. #415 and #416
DRBG Cert. #652
HMAC Certs. #1997 and #1999
RSA Cert. #1607
SHS Certs. #2622 and #2624
Triple-DES Certs. #1807 and #1808
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 132 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; HMAC-MD5; NDRNG
Firmware Versions
5.0, build0305, 141216

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3
Canada

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381 x7416
Fax: 613-225-2951

Lab

CGI
NVLAP Code: 200928-0