Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #789

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

FortiGate-5050

Standard

FIPS 140-2

Status

Historical

Historical Reason

RNG SP800-131A Revision 1 Transition

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Cryptographic Module Ports and Interfaces: Level 3
Roles, Services, and Authentication: Level 3
Cryptographic Key Management: Level 3
Design Assurance: Level 3

Module Type

Hardware

Embodiment

Multi-chip standalone

Description

FortiGate Multi-Threat Security Solutions are dedicated, hardware-based devices that deliver complete content protection against blended threats at the network perimeter or within the internal network.

Approved Algorithms

AES	Certs. #471, #472 and #476
HMAC	Certs. #228, #229 and #233
RNG	Cert. #251
RSA	Cert. #193
SHS	Certs. #539, #540 and #544
Triple-DES	Certs. #486, #487 and #490

Other Algorithms

DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 110 bits of encryption strength; non-compliant); MD5; HMAC-MD5

Hardware Versions

FortiGate-5050 (build C4QP38); FortiGate-5001SX (build P4CF76); FortiGate-5001FA2 (build C5FA26)

Firmware Versions

FortiOS 3.00, build 8317, 061121

Product URL

http://www.fortinet.com/products

Vendor

Fortinet, Inc.
326 Moodie Drive
Ottawa, ON K2H 8G3
Canada

Jeff Lake, Vice President, Federal Operations
jlake@fortinet.com
Phone: 678-402-8021
Fax: 678-402-8021

Related Files

Security Policy
Certificate

Validation History

Date	Type	Lab
6/19/2007	Initial	DOMUS
2/21/2008	Update