Certificate 1951 - FortiGate-80C [1], FortiGate-110C [2], FortiGate-60C [3] and FortiWiFi-60C [4]
intCertNum 1951
strVendorName Fortinet, Inc.
strURL http://www.fortinet.com
strAddress1 326 Moodie Drive
strAddress2
strAddress3
strCity Ottawa
strStateProv Ontario
strPostalCode K2H 8G3
strCountry K2H 8G3
strContact Alan Kaye
strEmail akaye@fortinet.com
strPhone 613-225-9381 x7416
strFax 613-225-2951
strContact2
strEmail2
strFax2
strPhone2
intCertNum 1951
strModuleName FortiGate-80C [1], FortiGate-110C [2], FortiGate-60C [3] and FortiWiFi-60C [4]
strPartNumber Hardware Versions: C4BC61 [1], C4HA15 [2], C4DM93 [3] and C4DM95 [4] with Tamper Evident Seal Kits: FIPS-SEAL-BLUE [1,2] or FIPS-SEAL-RED [3,4];
Firmware Versions: (FortiOS 4.0, build3830, 131223)
memModuleNotes When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL http://www.fortinet.com/products/index.html
strModuleType Hardware
strValidationDate 05/23/2013;11/08/2013;06/27/2014
intOverallLevel 2
memIndividualLevelNotes -Cryptographic Module Ports and Interfaces: Level 3;-Roles, Services, and Authentication: Level 3;-Design Assurance: Level 3
strFIPSAlgorithms AES (Certs. #2277, #2607 and #2608);
Triple-DES (Certs. #1424, #1572 and #1573);
RNG (Cert. #1234);
SHS (Certs. #1958, #2191 and #2192);
HMAC (Certs. #1395, #1615 and #1616);
RSA (Certs. #1168 and #1334)
strOtherAlgorithms AES-CCM (non-compliant);
Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 201 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
RSA (key wrapping;
key establishment methodology provides 112 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
DES;
MD5;
HMAC-MD5;
NDRNG
strConfiguration Multi-chip standalone
memModuleDescription The FortiGate product family spans the full range of network environments, from SOHO to service provider, offering cost effective systems for any size of application. FortiGate appliances detect and eliminate the most damaging, content-based threats from email and Web traffic such as viruses, worms, intrusions, inappropriate Web content and more in real time - without degrading network performance.
intModuleCount 1
memAdditionalNotes 11/08/13: Validation re-posted
06/27/14: Updated FW FortiOS 4.0, build3830, 131223 and updated the security policy.
strFirstValidtionDate 05/23/13 00:00:00
strLabName CGI
strValidationYear 2013