Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4784

Details

Module Name
Wildfire 10.2 WF-500 and WF-500-B
Standard
FIPS 140-3
Status
Active
Sunset Date
8/28/2026
Overall Level
2
Caveat
Interim validation. When installed, initialized and configured as specified in Section 11 of the Security Policy. The tamper evident seals and Physical Kit installed as indicated in the Security Policy
Security Level Exceptions
  • Roles, services, and authentication: Level 3
  • Operational environment: N/A
  • Non-invasive security: N/A
  • Life-cycle assurance: Level 3
  • Mitigation of other attacks: N/A
  • Documentation requirements: N/A
  • Cryptographic module security policy: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The Wildfire 10.2 WF-500 and WF-500-B from Palo Alto Networks Inc. cryptographic modules designed to identify unknown malware, zero-day exploits, and Advanced Persistent Threats (APTs) through dynamic analysis, and automatically disseminates protection in near real-time to help security teams meet the challenge of advanced cyber-attacks.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES-CBC
AES-CFB128
AES-CTR
AES-GCM
Conditioning Component AES-CBC-MAC SP800-90B
Counter DRBG
ECDSA KeyGen (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigVer (FIPS186-4)
HMAC-SHA-1
HMAC-SHA2-224
HMAC-SHA2-256
HMAC-SHA2-384
HMAC-SHA2-512
KAS-ECC-SSC Sp800-56Ar3
KAS-FFC-SSC Sp800-56Ar3
KDF IKEv2
KDF SNMP
KDF SSH
KDF TLS
RSA KeyGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA SigVer (FIPS186-4)
Safe Primes Key Generation
Safe Primes Key Verification
SHA-1
SHA2-224
SHA2-256
SHA2-384
SHA2-512
Entropy
ENT (NP)
Hardware Versions
910-000097 with FIPS Kit 920-000145, 910-000270 with FIPS Kit 920-000318
Firmware Versions
10.2.3-h1

Vendor

Palo Alto Networks, Inc.
3000 Tannery Way
Santa Clara, California 95054
USA

Jake Bajic
certifications@paloaltonetworks.com
Phone: 408-753-4000
Amir Shahhosseini
certifications@paloaltonetworks.com
Phone: 408-753-4000

Validation History

Date Type Lab
8/29/2024 Initial LEIDOS CSTL