U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3814

Details

Module Name
FortiOS 6.0 and 6.2
Standard
FIPS 140-2
Status
Active
Sunset Date
2/7/2026
Validation Dates
02/08/2021
Overall Level
1
Caveat
When operated in FIPS mode and installed, initialized and configured as specified in the FIPS 140-2 Compliant Operation Section of the Security Policy. Authentication at level 3 is only applicable when identity-based authentication is enforced for the User role.
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 2
Module Type
Firmware
Embodiment
Multi-Chip Stand Alone
Description
The FortiOS is a firmware based operating system that runs exclusively on Fortinet's FortiGate/FortiWiFi product family. The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.
Tested Configuration(s)
  • FortiGate-2500E with Intel® Xeon® Processor E5-1660v4
FIPS Algorithms
AES Certs. #C1548, #C1549, #C1572, #C1574, #C1575, #C1576 and #C1578
CVL Certs. #C1572, #C1574, #C1575, #C1576 and #C1578
DRBG Certs. #C1571 and #C1573
ECDSA Certs. #C1572, #C1574, #C1575, #C1576 and #C1578
HMAC Certs. #C1572, #C1574, #C1575, #C1576 and #C1578
KTS AES Certs. #C1548 and #C1549 and HMAC Certs. #C1574 and #C1576; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Certs. #C1574 and #C1576; key establishment methodology provides 128 or 256 bits of encryption strength
RSA Certs. #C1574, #C1576 and #C1578
SHS Certs. #C1572, #C1574, #C1575, #C1576 and #C1578
Allowed Algorithms
Diffie-Hellman (CVL Certs. #C1572, #C1574, #C1575 and #C1576, key agreement; key establishment methodology provides between 112 and 196 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #C1572, #C1574, #C1575 and #C1576, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Firmware Versions
FortiOS 6.0 build 5445 and FortiOS 6.2 build 5548

Vendor

Fortinet, Inc.
16 Fitzgerald Road
Ottawa, ON K2H 8R6
Canada

Alan Kaye
akaye@fortinet.com
Phone: 613-225-9381 x87416
Fax: 613-225-2951

Related Files

Security Policy
Consolidated Certificate

Lab

Lightship Security, Inc.
NVLAP Code: 600207-0