Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #2543


Module Name
FortiClient 5.0 VPN Client
FIPS 140-2
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
When operated in FIPS mode and configured according to the Entropy Token Section of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy. There is no assurance of the minimum strength of generated keys
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Multi-Chip Stand Alone
The FortiClient VPN client provides a FIPS 140-2 validated, IPSec and SSL VPN client for Windows platforms.
Tested Configuration(s)
  • Windows 7 Enterprise Edition running on a Dell Optiplex 755 with the Fortinet entropy token (part number FTR-ENT-1) (single-user mode)
Approved Algorithms
AES Certs. #2912 and #2924
CVL Cert. #329
DRBG Cert. #538
HMAC Certs. #1842 and #1851
PBKDF vendor affirmed
RSA Cert. #1533
SHS Certs. #2451 and #2460
Triple-DES Certs. #1728 and #1737
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 196 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 144 bits of encryption strength; non-compliant less than 112 bits of encryption strength); NDRNG
Software Versions
FortiClient 5.0, build0367, 151201


Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3

Alan Kaye
Phone: 613-225-9381
Fax: 613-225-2951

Validation History

Date Type Lab
1/26/2016 Initial DXC Technology