Module Name
FortiWLM-100D and FortiWLM-1000D
Caveat
When installed, initialized and configured as specified in the FIPS 140-2 Compliant Operation Section of the Security Policy. The tamper evident seals and entropy token installed as indicated in the security policy. No assurance of the minimum strength of generated keys
Security Level Exceptions
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The FortiWLM-100D and 1000D are multi-chip standalone cryptographic modules consisting of production-grade components in a physically protected enclosure conformant to FIPS 140-2 Level 2 requirements.
The modules have similar appearance and functionality but have different numbers and types of network interfaces to support various network configurations:
- The FortiWLM-100D has 4 network interfaces with status LEDs for each network interface (4x 10/100/1000 Base-T)
- The FortiWLM-1000D has 8 network interfaces with status LEDs for each network interface (4x 10/100/1000 Base-T,4x 1GB SFP)
FIPS Algorithms
AES |
Certs. #C1652 and #C1653 |
CKG |
vendor affirmed |
CVL |
Cert. #C1653 |
DRBG |
Cert. #C1652 |
HMAC |
Cert. #C1653 |
KAS-SSC |
vendor affirmed |
KTS |
AES Cert. #C1653 and HMAC Cert. #C1653; key establishment methodology provides 128 or 256 bits of encryption strength |
RSA |
Cert. #C1653 |
SHS |
Cert. #C1653 |
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
FWM-100D (C1AE82) and FWM-1000D (C1AE83) with Tamper Evident Seal Kit: FIPS-SEAL-RED
Firmware Versions
FortiWLM 8.5-2fips-1