U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3363

Details

Module Name
FortiMail-2000E/3000E
Standard
FIPS 140-2
Status
Active
Sunset Date
2/5/2024
Validation Dates
02/06/2019
Overall Level
2
Caveat
When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy and configured according to the Entropy Token Section of the Security Policy. No assurance of the minimum strength of generated keys.
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The FortiMail family of email security appliances provide an effective barrier against the ever-rising volume of sophisticated spam and malware and includes features designed to facilitate regulatory compliance. FortiMail 6.0 offers both inbound and outbound scanning, advanced antispam and antimalware protection, content disarm and reconstruction, URI click protection, Advanced Threat Protection through integration with FortiSandbox in the cloud or on-prem, data leak prevention, identity based encryption and extensive quarantine and archiving capabilities.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Cert. #5321
CKG Vendor Affirmed
CVL Certs. #1786 and #1787
DRBG Cert. #2050
HMAC Cert. #3517
KTS AES Cert. #5321 and HMAC Cert. #3517; key establishment methodology provides 128 or 256 bits of encryption strength
RSA Cert. #2849
SHS Cert. #4271
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1786 and Cert. #1787, key agreement; key establishment methodology provides between 112 and 201 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1786 and Cert. #1787, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD5; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Hardware Versions
C1AD94 and C1AD97 with Tamper Evident Seal Kit: FIPS-SEAL-RED
Firmware Versions
FortiMail v6.0, build108,180731
Product URL
http://www.fortinet.com/products/index.html

Vendor

Fortinet, Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381
Fax: 613-225-2951

Related Files

Security Policy
Consolidated Certificate

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0