This page was not yet optimized for use on mobile
devices.
WatchGuard Firebox M200[1], M300[2], M400[3], M500[4], M440[5], M4600[6], M5600[7]
Certificate #2863
Webpage information
Security policy
Symmetric Algorithms
AES, AES-128, AES-192, AES-256, RC4, DES, Triple-DES, HMAC, HMAC-SHA-224, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512Asymmetric Algorithms
ECDH, ECDSA, Diffie-Hellman, DHHash functions
SHA-1, SHA1, SHA-224, SHA-256, SHA-384, SHA-512, MD5, PBKDFSchemes
MAC, Key Exchange, Key agreementProtocols
SSH, TLS, TLS1.2, TLS 1.2, IKEv1, IKE, VPNRandomness
PRNG, DRBGElliptic Curves
P-256, P-384Block cipher modes
CBC, CTR, CCMVendor
MicrosoftSecurity level
Level 2Standards
FIPS 140-2File metadata
| Author | Peter Eng |
|---|---|
| Creation date | D:20170309101605-08'00' |
| Modification date | D:20170309101605-08'00' |
| Pages | 70 |
| Creator | Microsoft® Word 2016 |
| Producer | Microsoft® Word 2016 |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
- cpe:2.3:h:watchguard:firebox_m200:-:*:*:*:*:*:*:*
- cpe:2.3:h:watchguard:firebox_m300:-:*:*:*:*:*:*:*
- cpe:2.3:h:watchguard:firebox_m400:-:*:*:*:*:*:*:*
- cpe:2.3:h:watchguard:firebox_m440:-:*:*:*:*:*:*:*
- cpe:2.3:h:watchguard:firebox_m4600:-:*:*:*:*:*:*:*
- cpe:2.3:h:watchguard:firebox_m500:-:*:*:*:*:*:*:*
- cpe:2.3:h:watchguard:firebox_m5600:-:*:*:*:*:*:*:*
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2863,
"dgst": "1d10cfa4a998611c",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"SHS#3266",
"AES#3960",
"SHS#3086",
"HMAC#2417",
"HMAC#2418",
"SHS#3087",
"CVL#793",
"HMAC#2424",
"SHS#3091",
"Triple-DES#2171",
"DRBG#1160",
"HMAC#2419",
"AES#3670",
"HMAC#2580",
"AES#3677",
"AES#3672",
"Triple-DES#2050",
"RSA#2023",
"Triple-DES#2055",
"HMAC#2423",
"SHS#3092",
"SHS#3085",
"Triple-DES#2056",
"AES#3676",
"Triple-DES#2051",
"Triple-DES#2049",
"AES#3671"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:watchguard:firebox_m440:-:*:*:*:*:*:*:*",
"cpe:2.3:h:watchguard:firebox_m4600:-:*:*:*:*:*:*:*",
"cpe:2.3:h:watchguard:firebox_m500:-:*:*:*:*:*:*:*",
"cpe:2.3:h:watchguard:firebox_m400:-:*:*:*:*:*:*:*",
"cpe:2.3:h:watchguard:firebox_m200:-:*:*:*:*:*:*:*",
"cpe:2.3:h:watchguard:firebox_m300:-:*:*:*:*:*:*:*",
"cpe:2.3:h:watchguard:firebox_m5600:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"11.11.2"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDH": {
"ECDH": 4
},
"ECDSA": {
"ECDSA": 1
}
},
"FF": {
"DH": {
"DH": 6,
"Diffie-Hellman": 12
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"CCM": {
"CCM": 1
},
"CTR": {
"CTR": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 28,
"IKEv1": 4
},
"SSH": {
"SSH": 26
},
"TLS": {
"TLS": {
"TLS": 29,
"TLS 1.2": 3,
"TLS1.2": 1
}
},
"VPN": {
"VPN": 28
}
},
"crypto_scheme": {
"KA": {
"Key agreement": 1
},
"KEX": {
"Key Exchange": 1
},
"MAC": {
"MAC": 3
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 4,
"P-384": 4
}
},
"eval_facility": {},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES / 128": 1,
"AES / 128, 192": 2,
"AES / 128,192": 2,
"AES-128": 3,
"AES-192": 3,
"AES-256": 3,
"HMAC- SHA-1": 1,
"HMAC-SHA-1": 10,
"HMAC-SHA-224": 2,
"HMAC-SHA-256": 2,
"HMAC-SHA-256 / 256": 6,
"HMAC-SHA-384": 2,
"HMAC-SHA-384 / 384": 6,
"HMAC-SHA-512": 2,
"HMAC-SHA-512 / 512": 6,
"HMAC-SHA1": 10,
"HMAC-SHA1 / 160": 6,
"HMAC-SHA224": 2,
"HMAC-SHA256": 2,
"HMAC-SHA384": 2,
"HMAC-SHA512": 2,
"SHA 1": 1,
"SHA 1 , 256": 3,
"SHA 256": 1,
"SHA( 1": 6,
"SHA( 224": 4,
"SHA-1": 11,
"SHA-224": 1,
"SHA-256": 3,
"SHA-384": 2,
"SHA-512": 3,
"SHA1 793": 1
}
},
"fips_security_level": {
"Level": {
"Level 2": 3
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 1
}
},
"PBKDF": {
"PBKDF": 1
},
"SHA": {
"SHA1": {
"SHA-1": 11,
"SHA1": 1
},
"SHA2": {
"SHA-224": 1,
"SHA-256": 3,
"SHA-384": 2,
"SHA-512": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 26,
"PRNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 15
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 17,
"AES-128": 3,
"AES-192": 3,
"AES-256": 3
},
"RC": {
"RC4": 1
}
},
"DES": {
"3DES": {
"Triple-DES": 14
},
"DES": {
"DES": 2
}
},
"constructions": {
"MAC": {
"HMAC": 7,
"HMAC-SHA-224": 1,
"HMAC-SHA-256": 4,
"HMAC-SHA-384": 4,
"HMAC-SHA-512": 4
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 1
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Peter Eng",
"/CreationDate": "D:20170309101605-08\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2016",
"/ModDate": "D:20170309101605-08\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2016",
"pdf_file_size_bytes": 4115176,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://csrc.nist.gov/groups/STM/cmvp/index.html"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 70
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "52689126c0c77cc21dddc0a3215502690620312343eb6ffad98a71dcca8bb832",
"policy_txt_hash": "db883ce51c38f17e2267c2b5b6c3dd237ad75851ac6e60b78c278ed763729d0b"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode and with the tamper-evident seals installed as indicated in the Security Policy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertMar2017.pdf",
"date_sunset": null,
"description": "WatchGuard\u00ae Firebox appliances are built for enterprise-grade performance with blazing throughput and numerous connectivity options. Advanced networking features include clustering, high availability (active/active), VLAN support, multi-WAN load balancing and enhanced VoIP security, plus inbound and outbound HTTPS inspection, to give the strong security enterprises need. And the FIREBOX appliances are completely configurable - turn on or off components and services to fit different network security deployment requirements.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": null,
"fw_versions": "Fireware OS v11.11.2",
"historical_reason": "Moved to historical list due to sunsetting",
"hw_versions": "ML3AE8 [1,2]; SL1AE24 [5]; KL5AE8 [3,4]; CL4AE24 [6] with WG8583, WG8584 and WG8597; CL5AE32 [7] with WG8583, WG8584, WG8585, WG8022, and WG8598; FIPS Kit P/N: WG8566",
"level": 2,
"mentioned_certs": {},
"module_name": "WatchGuard Firebox M200[1], M300[2], M400[3], M500[4], M440[5], M4600[6], M5600[7]",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2017-03-16",
"lab": "EWA - Canada",
"validation_type": "Initial"
}
],
"vendor": "WatchGuard Technologies, Inc.",
"vendor_url": "http://www.watchguard.com/"
}
}