Module Name
WatchGuard Firebox M270[1], M370[2], M470[3], M570[4], M670[5]
Validation Dates
12/01/2020
Caveat
When operated in FIPS mode and with the tamper-evident seals installed as indicated in the Security Policy
Embodiment
Multi-Chip Stand Alone
Description
WatchGuard® Firebox appliances are built for enterprise-grade performance with blazing throughput and numerous connectivity options. Advanced networking features include clustering, high availability (active/active), VLAN support, multi-WAN load balancing and enhanced VoIP security, plus inbound and outbound HTTPS inspection, to give the strong security enterprises need. And the FIREBOX appliances are completely configurable - turn on or off components and services to fit different network security deployment requirements.
FIPS Algorithms
AES |
Certs. #5913, #5914, #5918, #5919, #5920, #5921, #5922 and #5923 |
CKG |
Vendor Affirmed |
CVL |
Certs. #2144, #2145, #2146, #2147 and #2148 |
DRBG |
Certs. #2475, #2476, #2478, #2479 and #2480 |
HMAC |
Certs. #3895, #3896, #3898, #3899, #3900, #3901, #3902 and #3903 |
RSA |
Certs. #3102, #3103, #3104, #3105 and #3106 |
SHS |
Certs. #4671, #4672, #4674, #4675, #4676, #4677, #4678 and #4679 |
Triple-DES |
Certs. #2875, #2876, #2877, #2878, #2879, #2880, #2881 and #2882 |
Allowed Algorithms
Diffie-Hellman (CVL Certs. #2144, #2145, #2146, #2147 and #2148, key agreement; key establishment methodology provides 112 or 128 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #2144, #2145, #2146, #2147 and #2148, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
TL2AE8 [1]; WL6AE8 [2]; WL6AE8 [3-5] with WG8592, WG8593 and WG8594; FIPS Kit P/N: WG8566
Firmware Versions
Fireware OS v12.3.1