This page was not yet optimized for use on mobile devices.
FortiClient Crypto Library
Certificate #4931
Webpage information ?
Security policy ?
Symmetric Algorithms
AES, AES-, AES-256, CAST, HMACAsymmetric Algorithms
RSA-3072, ECDH, ECDSA, ECC, DHHash functions
SHA-1, SHA3-256, SHA3-384, SHA3-512, SHA3-386, PBKDF, PBKDF2Schemes
MAC, Key AgreementProtocols
TLS, IKEv2Randomness
DRBG, RNGElliptic Curves
P-256, P-384, P-521, K-233Block cipher modes
ECB, CBCTrusted Execution Environments
PSP, SSCVendor
MicrosoftSecurity level
Level 1, level 1Standards
FIPS 140-3, FIPS PUB 197, FIPS186-4, FIPS 186-4, FIPS PUB 198-1, FIPS 180-4, FIPS 198-1, FIPS 202, SP 800-132, SP 800-38A, SP 800-57, SP 800-56A, PKCS1, ISO/IEC 24759, ISO/IEC 19790:2012File metadata
| Creation date | D:20241213145036-06'00' |
|---|---|
| Modification date | D:20241213145036-06'00' |
| Pages | 45 |
References
Outgoing- 3419 - historical - Mojo Access Point
Heuristics ?
No heuristics are available for this certificate.
References ?
Updates ?
-
23.12.2024 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name FortiClient Crypto Library was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4931,
"dgst": "abe0ccdc1f6402ee",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"HMAC-SHA2-256A4688",
"HMAC-SHA-1A3419",
"KAS-FFC-SSC Sp800-56Ar3A3419",
"AES-ECBA3419",
"ECDSA KeyGen (FIPS186-4)A3419",
"ECDSA SigVer (FIPS186-4)A3419",
"RSA KeyGen (FIPS186-4)A3419",
"RSA SigGen (FIPS186-4)A3419",
"RSA SigVer (FIPS186-4)A3419",
"SHA2-384A4688",
"HMAC-SHA2-384A4688",
"HMAC-SHA2-512A4688",
"KAS-ECC-SSC Sp800-56Ar3A3419",
"HMAC-SHA3-512A3419",
"SHA-1A3419",
"Safe Primes Key GenerationA3419",
"AES-CBCA4688",
"ECDSA KeyVer (FIPS186-4)A3419",
"SHA3-512A3419",
"Counter DRBGA3419",
"SHA2-256A4688",
"ECDSA SigGen (FIPS186-4)A3419",
"PBKDFA3419",
"SHA2-512A4688"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"-"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"3419"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"3419"
]
}
},
"policy_prunned_references": {
"_type": "Set",
"elements": [
"3419"
]
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDH": {
"ECDH": 13
},
"ECDSA": {
"ECDSA": 49
}
},
"FF": {
"DH": {
"DH": 14
}
},
"RSA": {
"RSA-3072": 3
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"ECB": {
"ECB": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKEv2": 1
},
"TLS": {
"TLS": {
"TLS": 1
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 10
},
"MAC": {
"MAC": 12
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"K-233": 2,
"P-256": 36,
"P-384": 20,
"P-521": 28
}
},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#3419": 1
}
},
"fips_certlike": {
"Certlike": {
"AES-256": 1,
"AES-CBC (256": 2,
"DRBG 256": 3,
"HMAC-SHA-1": 14,
"PKCS1": 2,
"RSA PKCS1": 2,
"SHA-1": 7,
"SHA2- 384": 2,
"SHA2-256": 27,
"SHA2-384": 17,
"SHA2-512": 19,
"SHA3-256": 4,
"SHA3-2566": 1,
"SHA3-384": 3,
"SHA3-3846": 1,
"SHA3-386": 1,
"SHA3-512": 3,
"SHA3-5121": 2,
"SHA3-5126": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 4,
"level 1": 3
}
},
"hash_function": {
"PBKDF": {
"PBKDF": 6,
"PBKDF2": 9
},
"SHA": {
"SHA1": {
"SHA-1": 7
},
"SHA3": {
"SHA3-256": 4,
"SHA3-384": 3,
"SHA3-386": 1,
"SHA3-512": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 37
},
"RNG": {
"RNG": 4
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-3": 60,
"FIPS 180-4": 10,
"FIPS 186-4": 20,
"FIPS 198-1": 3,
"FIPS 202": 2,
"FIPS PUB 197": 3,
"FIPS PUB 198-1": 8,
"FIPS186-4": 18
},
"ISO": {
"ISO/IEC 19790:2012": 1,
"ISO/IEC 24759": 2
},
"NIST": {
"SP 800-132": 5,
"SP 800-38A": 2,
"SP 800-56A": 1,
"SP 800-57": 1
},
"PKCS": {
"PKCS1": 2
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 15,
"AES-": 1,
"AES-256": 1
},
"CAST": {
"CAST": 32
}
},
"constructions": {
"MAC": {
"HMAC": 23
}
}
},
"tee_name": {
"AMD": {
"PSP": 4
},
"IBM": {
"SSC": 3
}
},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 9
}
},
"vulnerability": {}
},
"policy_metadata": {
"/CreationDate": "D:20241213145036-06\u002700\u0027",
"/ModDate": "D:20241213145036-06\u002700\u0027",
"pdf_file_size_bytes": 1455656,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://support.fortinet.com/",
"https://www.fortinet.com/support-and-training/training.html",
"https://www.fortinet.com/products",
"https://csrc.nist.gov/projects/cryptographic-module-validation-program",
"https://www.fortinet.com/contact",
"https://blog.fortinet.com/",
"https://www.fortinet.com/doc/legal/EULA.pdf",
"https://docs.fortinet.com/document/forticlient/7.0.8/ems-quickstart-guide/516451/introduction",
"https://training.fortinet.com/",
"https://fortiguard.com/",
"https://video.fortinet.com/",
"https://docs.fortinet.com/",
"https://docs.fortinet.com/document/forticlient/7.0.8/administration-guide/725845/introduction",
"https://docs.fortinet.com/document/forticlient/7.0.8/ems-administration-guide/24450/introduction",
"https://wwww.fortiguard.com/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 45
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "9406ddbc7af349dab7845c04e0e9dad3de3edde85293ea93593123b6a77cd75f",
"policy_txt_hash": "22b1ece76e9040566f68b1d27e7c6dd0e180dd23bb610298a8417e3515adab29"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "Interim Validation. When installed, initialized and configured as specified in Section 11.1 of the Security Policy. No assurance of the minimum strength of generated SSPs (e.g., keys)",
"certificate_pdf_url": null,
"date_sunset": "2026-12-19",
"description": "The module provides cryptographic support for FortiClient, Fortinet\u2019s endpoint security application. The module provides FIPS 140-3 validated cryptographic support for services such as IPSEC and SSL VPN.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A",
"Mitigation of other attacks: N/A",
"Documentation requirements: N/A",
"Cryptographic module security policy: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "FortiClient Crypto Library",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": "7.0.2",
"tested_conf": [
"Microsoft Windows 10 running on a Dell XPS 8700 with a Intel Core i7-4770"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2024-12-20",
"lab": "LEIDOS CSTL",
"validation_type": "Initial"
}
],
"vendor": "Fortinet Technologies Inc.",
"vendor_url": "http://www.fortinet.com"
}
}