Cryptographic Module Validation Program CMVP

Certificate #2765

Details

Module Name
FortiOS 5.2
Standard
FIPS 140-2
Status
Active
Sunset Date
10/6/2021
Validation Dates
10/07/2016
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. There is no assurance of the minimum strength of generated keys
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
Module Type
Firmware
Embodiment
Multi-Chip Stand Alone
Description
The FortiOS is a firmware based operating system that runs exclusively on Fortinet's FortiGate/FortiWiFi product family. The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.
Tested Configuration(s)
  • FortiGate-300D with the Fortinet entropy token (part number FTR-ENT-1)
FIPS Algorithms
AES Certs. #3963 and #3964
CVL Certs. #794 and #795
DRBG Cert. #1161
HMAC Certs. #2581 and #2582
RSA Cert. #2024
SHS Certs. #3267 and #3268
Triple-DES Certs. #2172 and #2173
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; HMAC-MD5; MD5
Firmware Versions
5.2.7, build0718,160328

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3
Canada

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381 x7416
Fax: 613-225-2951

Lab

CGI Information Systems and Management Consultants Inc.
NVLAP Code: 200928-0