This page was not yet optimized for use on mobile devices.

FortiOS

Certificate #1401

Webpage information ?

Status	historical
Historical reason	RNG SP800-131A Revision 1 Transition
Validation dates	10.09.2010
Standard	FIPS 140-2
Security level	1
Type	Firmware
Embodiment	Multi-Chip Stand Alone
Caveat	When operated in FIPS mode
Exceptions	Cryptographic Module Ports and Interfaces: Level 3 Roles, Services, and Authentication: Level 3 Design Assurance: Level 3 Tested: FortiGate-310B FortiGate-500A FortiGate-620B FortiGate-800 FortiGate-3600 FortiGate-3600A FortiGate-5001A-DW FortiWiFi-50B FortiWiFi-60B
Description	The FortiOS is a firmware based operating system that runs exclusively on FortinetÆs FortiGate/FortiWiFi product family (PC-based, purpose built appliances)The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.
Version (Firmware)	FortiOS 4.00, build6204, 091113
Vendor	Fortinet, Inc.
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Certificate

Webpage

Security policy ?

Security target PDF TXT

Symmetric Algorithms

AES, DES, Triple-DES, HMAC

Asymmetric Algorithms

Diffie-Hellman

Hash functions

SHA-1, MD5

Schemes

Key agreement

Protocols

SSH, SSL, TLS, IKE, VPN

Randomness

RNG

Block cipher modes

CBC

Security level

Level 1

Standards

FIPS 140-2, FIPS 140, PKCS1

File metadata

Title	FOS 4.0 FIPS Level 1 Security Policy Rev1.book
Author	akaye
Creation date	D:20100728093248-04'00'
Modification date	D:20100830131544-04'00'
Pages	18
Creator	PScript5.dll Version 5.2.2
Producer	Acrobat Elements 8.0.0 (Windows)

References

Incoming

2441 - historical - Red Hat Enterprise Linux 6.6 OpenSSL Module, Red Hat Enterprise Linux 7.1 OpenSSL Module

Heuristics ?

No heuristics are available for this certificate.

References ?

Updates ?

18.05.2023 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The direct_transitive_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2000-0017', 'CVE-2000-1207', 'CVE-2016-7091', 'CVE-1999-0894', 'CVE-1999-0037', 'CVE-1999-1288', 'CVE-2007-3103', 'CVE-2001-0889', 'CVE-1999-0798', 'CVE-1999-0297', 'CVE-2001-0690', 'CVE-2000-0701']} values added.
- The indirect_transitive_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-7091', 'CVE-1999-1329', 'CVE-1999-1288', 'CVE-1999-1333', 'CVE-1999-0037', 'CVE-2001-0889', 'CVE-2001-0690', 'CVE-2000-1207', 'CVE-1999-0894', 'CVE-2015-1819', 'CVE-2007-3103', 'CVE-1999-0297', 'CVE-1999-1347', 'CVE-1999-1348', 'CVE-2000-0701', 'CVE-1999-1332', 'CVE-2000-0017', 'CVE-1999-1335', 'CVE-1999-1346', 'CVE-1999-0798']} values added.
19.03.2023 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The direct_transitive_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2000-0017', 'CVE-2000-1207', 'CVE-2016-7091', 'CVE-1999-0894', 'CVE-1999-0037', 'CVE-1999-1288', 'CVE-2007-3103', 'CVE-2001-0889', 'CVE-1999-0798', 'CVE-1999-0297', 'CVE-2001-0690', 'CVE-2000-0701']} values discarded.
- The indirect_transitive_cves property was updated, with the {'_type': 'Set', 'elements': ['CVE-2016-7091', 'CVE-1999-1329', 'CVE-1999-1288', 'CVE-1999-1333', 'CVE-1999-0037', 'CVE-2001-0889', 'CVE-2001-0690', 'CVE-2000-1207', 'CVE-1999-0894', 'CVE-2015-1819', 'CVE-2007-3103', 'CVE-1999-0297', 'CVE-1999-1347', 'CVE-1999-1348', 'CVE-2000-0701', 'CVE-1999-1332', 'CVE-2000-0017', 'CVE-1999-1335', 'CVE-1999-1346', 'CVE-1999-0798']} values discarded.
09.02.2023 The certificate data changed.
Certificate changed

The cert_id was updated.
- The new value is 1401.
The web extraction data was updated.
- The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2010-09-10', 'validation_type': 'Initial', 'lab': 'DOMUS'}], 'vendor_url': 'http://www.fortinet.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt1401.pdf', 'hw_versions': None, 'fw_versions': 'FortiOS 4.00, build6204, 091113'}.
- The standard property was set to FIPS 140-2.
- The status property was set to historical.
- The level property was set to 1.
- The embodiment property was set to Multi-Chip Stand Alone.
- The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].
The PDF extraction data was updated.
- The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 228849, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 18, '/Author': 'akaye', '/CreationDate': "D:20100728093248-04'00'", '/Creator': 'PScript5.dll Version 5.2.2', '/ModDate': "D:20100830131544-04'00'", '/Producer': 'Acrobat Elements 8.0.0 (Windows)', '/Title': 'FOS 4.0 FIPS Level 1 Security Policy Rev1.book', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}}.
- The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].
The computed heuristics were updated.
- The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': {'_type': 'Set', 'elements': ['2441']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['2630', '2742', '3733', '2798', '2441', '2633', '2446', '2447', '2721']}, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': {'_type': 'Set', 'elements': ['CVE-2003-0354', 'CVE-2016-7091', 'CVE-2001-1002', 'CVE-2002-1155', 'CVE-1999-1288', 'CVE-2003-0364', 'CVE-2001-0977', 'CVE-2002-0836', 'CVE-2001-0787', 'CVE-2003-0434', 'CVE-2002-0045', 'CVE-2002-0638', 'CVE-2015-7833', 'CVE-2002-1232', 'CVE-1999-0037', 'CVE-2003-0461', 'CVE-2001-0889', 'CVE-2001-0872', 'CVE-2003-0370', 'CVE-2002-0083', 'CVE-2001-0690', 'CVE-2003-0248', 'CVE-2003-0194', 'CVE-2000-1207', 'CVE-1999-0894', 'CVE-2001-0635', 'CVE-2003-0188', 'CVE-2002-0080', 'CVE-2007-3103', 'CVE-1999-0297', 'CVE-2002-1160', 'CVE-2003-0464', 'CVE-2002-0044', 'CVE-2000-0701', 'CVE-2000-0017', 'CVE-2018-1111', 'CVE-2017-1000253', 'CVE-2001-0859', 'CVE-2001-1383', 'CVE-2003-0247', 'CVE-1999-0798', 'CVE-2001-0886']}, 'indirect_transitive_cves': {'_type': 'Set', 'elements': ['CVE-2003-0354', 'CVE-1999-1329', 'CVE-2001-0977', 'CVE-2002-0836', 'CVE-2001-0787', 'CVE-1999-1333', 'CVE-2002-1232', 'CVE-2003-0461', 'CVE-2011-3188', 'CVE-1999-0043', 'CVE-2001-0889', 'CVE-2001-0690', 'CVE-1999-0390', 'CVE-2003-0194', 'CVE-1999-0894', 'CVE-2000-1220', 'CVE-2002-1160', 'CVE-2000-0017', 'CVE-2017-1000253', 'CVE-2003-0247', 'CVE-1999-0872', 'CVE-1999-0009', 'CVE-2011-3363', 'CVE-1999-0041', 'CVE-2010-4805', 'CVE-2005-0087', 'CVE-1999-0002', 'CVE-2011-3585', 'CVE-2000-1207', 'CVE-2001-0635', 'CVE-2002-0080', 'CVE-1999-1347', 'CVE-2010-4251', 'CVE-1999-1332', 'CVE-2018-1111', 'CVE-2001-0859', 'CVE-1999-1335', 'CVE-2007-5494', 'CVE-1999-0034', 'CVE-2000-0170', 'CVE-1999-1288', 'CVE-2002-1155', 'CVE-2007-2030', 'CVE-2003-0434', 'CVE-2002-0045', 'CVE-2002-0638', 'CVE-2012-1097', 'CVE-2015-7833', 'CVE-2011-2525', 'CVE-2001-0872', 'CVE-2002-0083', 'CVE-2003-0248', 'CVE-2007-6285', 'CVE-2003-0188', 'CVE-2016-4983', 'CVE-2007-3103', 'CVE-2015-1819', 'CVE-1999-0297', 'CVE-2011-2699', 'CVE-1999-1348', 'CVE-1999-0130', 'CVE-2002-0044', 'CVE-1999-0868', 'CVE-2015-2877', 'CVE-2001-1383', 'CVE-1999-1346', 'CVE-1999-0798', 'CVE-2006-5170', 'CVE-1999-0042', 'CVE-2001-0886', 'CVE-2016-7091', 'CVE-2007-5079', 'CVE-2011-2897', 'CVE-2001-1002', 'CVE-2003-0364', 'CVE-2011-2717', 'CVE-2000-0118', 'CVE-1999-0037', 'CVE-2009-4067', 'CVE-2003-0370', 'CVE-2011-4967', 'CVE-1999-1182', 'CVE-2003-0464', 'CVE-2011-1145', 'CVE-1999-0192', 'CVE-2000-0701', 'CVE-2011-3191', 'CVE-1999-1299', 'CVE-1999-0769', 'CVE-2005-2492']}}.
- The algorithms property was set to {'_type': 'Set', 'elements': ['AES#1156', 'AES#1154', 'SHS#1068', 'RSA#546', 'HMAC#657', 'HMAC#658', 'Triple-DES#835', 'SHS#1069', 'Triple-DES#836', 'AES#1155', 'RNG#639']}.
- The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].
The state was updated.
- The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': '7ce6f94c637c80d13a0438d2b3440648fe228adc4680e8cac059a6edfba7d008', 'policy_txt_hash': 'b540eb19373e03c3e1e1604f88d08ae4e81e2e9f007dfd117714c4c76fec01db'}.
- The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
07.12.2022 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The st_references property was updated, with the {'directly_referenced_by': {'_type': 'Set', 'elements': ['2031']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['2319', '2031']}} data.
05.11.2022 The certificate data changed.
Certificate changed

The web extraction data was updated.
- The algorithms property was set to {'_type': 'Set', 'elements': []}.
The computed heuristics were updated.
- The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1069', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#546', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#835', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1155', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#657', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1156', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#658', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1068', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#836', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#639', 'algorithm_type': 'RNG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1154', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}]} values discarded.
25.10.2022 The certificate data changed.
Certificate changed

The PDF extraction data was updated.
- The keywords property was updated, with the {'fips_certlike': {'__update__': {'Certlike': {'__update__': {'SHA-1': 10}, '__delete__': ['DES 835']}}}, 'vendor': {}, 'symmetric_crypto': {'__update__': {'DES': {'__update__': {'DES': {'__update__': {'DES': 1}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 10}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 12}}}}}}, 'crypto_scheme': {'__delete__': ['MAC']}, 'crypto_protocol': {'__update__': {'SSH': {'__update__': {'SSH': 11}}, 'TLS': {'__update__': {'SSL': {'__update__': {'SSL': 2}}, 'TLS': {'__update__': {'TLS': 3}}}}, 'VPN': {'__update__': {'VPN': 14}}}}, 'randomness': {'__update__': {'RNG': {'__update__': {'RNG': 11}}}}, 'standard_id': {'__update__': {'FIPS': {'__update__': {'FIPS 140-2': 31}}}}} data.
- The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1154', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1069', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 2048', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 836', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 639', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 80', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 835', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '9', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '31', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 657', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 13', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 140', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 546', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 658', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1024', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '\n1154', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 112', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1156', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1155', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 11', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '\n201', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1068', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]}.
The computed heuristics were updated.
- The algorithms property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '5', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1154', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1069', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 2048', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 836', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 639', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 80', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 835', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '9', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '31', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 657', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 13', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 140', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 546', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 658', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '4', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1024', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '\n1154', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 3', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 112', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1156', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1155', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 11', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '\n201', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': ' 1068', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '2', 'algorithm_type': None, 'vendor': None, 'implementation': None, 'date': None}]} values added.
The state was updated.
- The tables_done property was set to True.
08.10.2022 The certificate data changed.
Certificate changed

The PDF extraction data was updated.
- The keywords property was updated, with the {'crypto_protocol': {'__insert__': {'VPN': {'VPN': 22}}}} data.
17.07.2022 The certificate data changed.
Certificate changed

The _type was updated.
- The new value is sec_certs.sample.fips.FIPSCertificate.
The computed heuristics were updated.
- The following values were inserted: {'clean_cert_ids': {}}.
- The _type property was set to sec_certs.sample.fips.FIPSCertificate.Heuristics.
- The keywords property was set to {}.
- The algorithms property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1069', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#546', 'algorithm_type': 'RSA', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#835', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1155', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#657', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1156', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1068', 'algorithm_type': 'SHS', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#658', 'algorithm_type': 'HMAC', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#836', 'algorithm_type': 'Triple-DES', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#639', 'algorithm_type': 'RNG', 'vendor': None, 'implementation': None, 'date': None}, {'_type': 'sec_certs.sample.fips_algorithm.FIPSAlgorithm', 'cert_id': '#1154', 'algorithm_type': 'AES', 'vendor': None, 'implementation': None, 'date': None}]}.
- The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
- The web_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
The state was updated.
- The _type property was set to sec_certs.sample.fips.FIPSCertificate.InternalState.
- The following properties were deleted: ['fragment_path'].
29.06.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
25.06.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
23.06.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
21.06.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
14.06.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The pdf_scan was updated.
- The keywords property was updated, with the {'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 140-2': {'__update__': {'count': 1}}}}, 'PKCS[ #]*[1-9]+': {'__update__': {'PKCS1': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__update__': {'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}}}} data.
The computed heuristics were updated.
- The keywords property was updated, with the {'rules_standard_id': {'__update__': {'FIPS ?(?:PUB )?[0-9]+-[0-9]+?': {'__update__': {'FIPS 140-2': {'__update__': {'count': 1}}}}, 'PKCS[ #]*[1-9]+': {'__update__': {'PKCS1': {'__update__': {'count': 1}}}}}}, 'rules_block_cipher_modes': {'__update__': {'CBC': {'__update__': {'CBC': {'__update__': {'count': 1}}}}}}} data.
- The algorithms property was updated.
07.06.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
24.05.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
22.05.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
20.05.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
19.05.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
18.05.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
17.05.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
13.05.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
18.04.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
11.03.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
10.03.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
08.03.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
- The following properties were deleted: ['connections'].
The pdf_scan was updated.
- The following properties were deleted: ['connections'].
The computed heuristics were updated.
- The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'web_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}.
- The algorithms property was updated.
- The following properties were deleted: ['connections', 'directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
23.02.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
18.02.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
- The extracted_versions property was set to {'_type': 'Set', 'elements': ['4.00']}.
12.02.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
11.02.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
03.02.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
02.02.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The module_type property was set to Firmware.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
31.01.2022 The certificate data changed.
Certificate changed

The web_scan was updated.
- The algorithms property was updated.
The computed heuristics were updated.
- The algorithms property was updated.
30.01.2022 The certificate was first processed.

New certificate

A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 1401,
  "dgst": "afd679cd3f9a81fd",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#1156",
        "RSA#546",
        "RNG#639",
        "SHS#1069",
        "AES#1155",
        "AES#1154",
        "Triple-DES#835",
        "HMAC#657",
        "HMAC#658",
        "Triple-DES#836",
        "SHS#1068"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": {
      "_type": "Set",
      "elements": [
        "CVE-2001-0787",
        "CVE-1999-0894",
        "CVE-2001-0872",
        "CVE-1999-1288",
        "CVE-2002-1155",
        "CVE-2007-3103",
        "CVE-1999-0037",
        "CVE-2015-7833",
        "CVE-2003-0370",
        "CVE-2001-1383",
        "CVE-2002-0080",
        "CVE-2016-7091",
        "CVE-2002-0045",
        "CVE-2002-0083",
        "CVE-2000-0701",
        "CVE-2001-1002",
        "CVE-2003-0188",
        "CVE-2001-0977",
        "CVE-2003-0464",
        "CVE-1999-0297",
        "CVE-2001-0889",
        "CVE-2001-0635",
        "CVE-2003-0194",
        "CVE-2001-0886",
        "CVE-2003-0364",
        "CVE-2000-1207",
        "CVE-2001-0690",
        "CVE-2000-0017",
        "CVE-2002-0836",
        "CVE-2002-1160",
        "CVE-2003-0248",
        "CVE-2003-0354",
        "CVE-2018-1111",
        "CVE-2001-0859",
        "CVE-2003-0247",
        "CVE-2003-0461",
        "CVE-2002-0044",
        "CVE-2002-1232",
        "CVE-1999-0798",
        "CVE-2002-0638",
        "CVE-2003-0434",
        "CVE-2017-1000253"
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "4.00"
      ]
    },
    "indirect_transitive_cves": {
      "_type": "Set",
      "elements": [
        "CVE-2001-0872",
        "CVE-1999-1288",
        "CVE-2002-1155",
        "CVE-2011-2699",
        "CVE-1999-1332",
        "CVE-2007-6285",
        "CVE-2015-7833",
        "CVE-1999-0043",
        "CVE-2011-3585",
        "CVE-2016-7091",
        "CVE-2002-0045",
        "CVE-1999-1329",
        "CVE-2003-0464",
        "CVE-2003-0194",
        "CVE-1999-0130",
        "CVE-2003-0364",
        "CVE-1999-0042",
        "CVE-2007-5079",
        "CVE-2003-0248",
        "CVE-1999-1182",
        "CVE-2003-0247",
        "CVE-1999-1335",
        "CVE-2002-0044",
        "CVE-2002-1232",
        "CVE-1999-0009",
        "CVE-1999-1299",
        "CVE-2011-3363",
        "CVE-2016-4983",
        "CVE-1999-0894",
        "CVE-2015-1819",
        "CVE-2011-2717",
        "CVE-2002-0080",
        "CVE-1999-0868",
        "CVE-2010-4805",
        "CVE-2001-0889",
        "CVE-2011-4967",
        "CVE-2001-0886",
        "CVE-2007-5494",
        "CVE-2009-4067",
        "CVE-1999-1346",
        "CVE-2012-1097",
        "CVE-2001-0690",
        "CVE-2000-0017",
        "CVE-2003-0354",
        "CVE-2015-2877",
        "CVE-2018-1111",
        "CVE-2017-1000253",
        "CVE-1999-0390",
        "CVE-2000-0118",
        "CVE-1999-0192",
        "CVE-2007-3103",
        "CVE-1999-0037",
        "CVE-1999-1347",
        "CVE-1999-1348",
        "CVE-2011-1145",
        "CVE-2011-3191",
        "CVE-2001-1383",
        "CVE-2011-3188",
        "CVE-1999-0872",
        "CVE-2002-0083",
        "CVE-2000-0701",
        "CVE-2005-2492",
        "CVE-2003-0188",
        "CVE-2001-0977",
        "CVE-1999-0002",
        "CVE-1999-0297",
        "CVE-2001-0635",
        "CVE-2007-2030",
        "CVE-2005-0087",
        "CVE-2000-1207",
        "CVE-2002-1160",
        "CVE-2003-0461",
        "CVE-1999-0798",
        "CVE-2002-0638",
        "CVE-1999-0769",
        "CVE-2001-0787",
        "CVE-2000-0170",
        "CVE-2006-5170",
        "CVE-2010-4251",
        "CVE-2003-0370",
        "CVE-2001-1002",
        "CVE-1999-0041",
        "CVE-2002-0836",
        "CVE-1999-0034",
        "CVE-2011-2897",
        "CVE-2001-0859",
        "CVE-1999-1333",
        "CVE-2011-2525",
        "CVE-2000-1220",
        "CVE-2003-0434"
      ]
    },
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": {
        "_type": "Set",
        "elements": [
          "2441"
        ]
      },
      "directly_referencing": null,
      "indirectly_referenced_by": {
        "_type": "Set",
        "elements": [
          "2441",
          "3733",
          "2446",
          "2630",
          "2742",
          "2798",
          "2721",
          "2447",
          "2633"
        ]
      },
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "FF": {
          "DH": {
            "Diffie-Hellman": 4
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 17
        },
        "SSH": {
          "SSH": 11
        },
        "TLS": {
          "SSL": {
            "SSL": 2
          },
          "TLS": {
            "TLS": 3
          }
        },
        "VPN": {
          "VPN": 14
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "AES 1154": 1,
          "HMAC SHA-1": 8,
          "HMAC SHA-1 657": 1,
          "HMAC-SHA-1": 2,
          "PKCS1": 2,
          "RSA PKCS1": 2,
          "SHA-1": 10,
          "SHA-1 1068": 1,
          "SHA-1 657": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 3
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 2
          }
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 12
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 11
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140": 1,
          "FIPS 140-2": 31
        },
        "PKCS": {
          "PKCS1": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 18
          }
        },
        "DES": {
          "3DES": {
            "Triple-DES": 6
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 10
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "akaye",
      "/CreationDate": "D:20100728093248-04\u002700\u0027",
      "/Creator": "PScript5.dll Version 5.2.2",
      "/ModDate": "D:20100830131544-04\u002700\u0027",
      "/Producer": "Acrobat Elements 8.0.0 (Windows)",
      "/Title": "FOS 4.0 FIPS Level 1 Security Policy Rev1.book",
      "pdf_file_size_bytes": 228849,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 18
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "7ce6f94c637c80d13a0438d2b3440648fe228adc4680e8cac059a6edfba7d008",
    "policy_txt_hash": "b540eb19373e03c3e1e1604f88d08ae4e81e2e9f007dfd117714c4c76fec01db"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt1401.pdf",
    "date_sunset": null,
    "description": "The FortiOS is a firmware based operating system that runs exclusively on Fortinet\u00c6s FortiGate/FortiWiFi product family (PC-based, purpose built appliances)The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Cryptographic Module Ports and Interfaces: Level 3",
      "Roles, Services, and Authentication: Level 3",
      "Design Assurance: Level 3",
      "Tested: FortiGate-310B",
      "FortiGate-500A",
      "FortiGate-620B",
      "FortiGate-800",
      "FortiGate-3600",
      "FortiGate-3600A",
      "FortiGate-5001A-DW",
      "FortiWiFi-50B",
      "FortiWiFi-60B"
    ],
    "fw_versions": "FortiOS 4.00, build6204, 091113",
    "historical_reason": "RNG SP800-131A Revision 1 Transition",
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "FortiOS",
    "module_type": "Firmware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2010-09-10",
        "lab": "DOMUS",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Fortinet, Inc.",
    "vendor_url": "http://www.fortinet.com"
  }
}

FortiOS

Certificate #1401

Webpage information ?

Security policy ?

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Block cipher modes

Security

Security level

Other

Standards

File metadata

References

Heuristics ?

References ?

Updates ?

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

New certificate

Raw data