Cryptographic Module Validation Program CMVP

Certificate #2887

Details

Module Name
FortiGate-VM Virtual Appliance
Standard
FIPS 140-2
Status
Active
Sunset Date
4/20/2022
Validation Dates
04/21/2017
Overall Level
1
Caveat
When operated in FIPS mode. There is no assurance of the minimum strength of generated keys
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Physical Security: N/A
  • Design Assurance: Level 3
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The FortiGate-VM appliances are software modules designed to execute on a General Purpose Computer (GPC) hardware platform running the VMware hypervisor and FortiOS 5.2. The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.
Tested Configuration(s)
  • FortiGate-VM on VMware ESXi 5.5 (single-user mode) running on Dell PowerEdge R720 with Intel Xeon E5-2620 processor with the Fortinet entropy token (part number FTR-ENT-1)
FIPS Algorithms
AES Certs. #4021 and #4022
CVL Certs. #850 and #851
DRBG Cert. #1199
HMAC Certs. #2623 and #2624
RSA Cert. #2191
SHS Certs. #3317 and #3318
Triple-DES Certs. #2201 and #2202
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; HMAC-MD5; MD5
Software Versions
FortiGate-VM64 v5.2.7,build0718,160328

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3
Canada

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381 x7416
Fax: 613-225-2951

Lab

CGI ITSETF
NVLAP Code: 200928-0