Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #2784

Details

Module Name
FortiGate-30D/60D/92D, FortiWiFi-60D and FortiGateRugged-60D
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
2
Caveat
When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy and configured according to the Entropy Token Section of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy. There is no assurance of the minimum strength of generated keys
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The FortiGate product family spans the full range of network environments, from SOHO to service provider, offering cost effective systems for any size of application. FortiGate appliances detect and eliminate the most damaging, content-based threats from email and Web traffic such as viruses, worms, intrusions, inappropriate Web content and more in real time - without degrading network performance.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Certs. #3963, #3964 and #3965
CVL Certs. #794 and #795
DRBG Cert. #1161
HMAC Certs. #2581, #2582 and #2583
RSA Certs. #2024 and #2025
SHS Certs. #3267, #3268 and #3269
Triple-DES Certs. #2172, #2173 and 2174
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); AES-CCM (non-compliant); DES; HMAC-MD5; MD5
Hardware Versions
C1AA93, C1AB28, C1AC34, C1AB32, and C1AB57 with Tamper Evident Seal Kits: FIPS-SEAL-RED
Firmware Versions
5.2.7, build0718,160328

Vendor

Fortinet, Inc.
899 Kifer Road
Sunnyvale, CA 94086
USA

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381 x87416
Fax: 613-225-2951

Validation History

Date Type Lab
10/31/2016 Initial CGI Information Systems & Management Consultants Inc