This page was not yet optimized for use on mobile devices.

Fortress Mesh Points

Certificate #4385

Webpage information

Status	active
Validation dates	06.12.2022
Sunset date	21-09-2026
Standard	FIPS 140-2
Security level	2
Type	Hardware
Embodiment	Multi-Chip Stand Alone
Caveat	When operated in FIPS mode. The protocol SNMP shall not be used when operated in FIPS mode
Exceptions	Design Assurance: Level 3
Description	The Fortress Mesh Point is an all-in-one network access device housed in a rugged compact chassis, with the most stringent security available today built in. It can serve as a wireless bridge, a WLAN access point, and an eight-port LAN switch, while performing all the functions of a Fortress controller device: encrypting wireless traffic and providing Multi-factor Authentication for devices on the network it protects.
Version (Hardware)	ES2440, ES520v1, ES520v2 and ES820
Version (Firmware)	5.4.7
Vendor	General Dynamics Mission Systems
References	This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Certificate

Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms

AES, AES-, HMAC

Asymmetric Algorithms

RSA2048, ECDH, ECDSA, ECC, Diffie-Hellman, DH, DSA

Hash functions

SHA1, SHA-1, SHA256, SHA-256, SHA-384, SHA-512, SHA512, SHA384, MD5

Schemes

MAC, Key Exchange, Key Agreement

Protocols

SSH, SSL, TLS, TLS 1.2, IKEv2, IKE, IPsec, VPN

Randomness

DRBG, RNG

Elliptic Curves

P-256, P-384, secp256r1, secp384r1

Block cipher modes

ECB, CBC, OFB, GCM, CCM

TLS cipher suites

TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA

Vendor

Broadcom

Security level

Level 2

Standards

FIPS 140-2, FIPS 197, FIPS186-4, FIPS 186-4, FIPS198-1, FIPS 180-4, FIPS 186-2, SP 800-90A, SP 800-38A, SP 800-133, SP 800-90B, RFC 4106, RFC 7296, RFC 5288

File metadata

Author	Niforatos, Matthew James
Creation date	D:20221108145745-05'00'
Modification date	D:20221108145745-05'00'
Pages	39
Creator	Microsoft® Word for Microsoft 365
Producer	Microsoft® Word for Microsoft 365

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state was updated.

The following values were inserted: {'policy_json_hash': None}.

The following properties were deleted: ['policy_convert_garbage'].
08.09.2025

The certificate data changed.
Certificate changed

The web extraction data was updated.

The validation_history property was updated.
09.02.2023

The certificate data changed.
Certificate changed

The cert_id was updated.

The new value is 4385.

The web extraction data was updated.

The following values were inserted: {'validation_history': [{'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2022-12-06', 'validation_type': 'Initial', 'lab': 'LEIDOS CSTL'}], 'vendor_url': 'http://gdmissionsystems.com', 'certificate_pdf_url': 'https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/December 2022_030123_0646_signed.pdf', 'hw_versions': 'ES2440, ES520v1, ES520v2 and ES820', 'fw_versions': '5.4.7'}.

The standard property was set to FIPS 140-2.

The status property was set to active.

The level property was set to 2.

The embodiment property was set to Multi-Chip Stand Alone.

The tested_conf property was set to None.

The following properties were deleted: ['date_validation', 'algorithms', 'vendor_www', 'lab', 'lab_nvlap', 'security_policy_www', 'certificate_www', 'hw_version', 'fw_version', 'product_url'].

The PDF extraction data was updated.

The following values were inserted: {'policy_metadata': {'pdf_file_size_bytes': 1140955, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 39, '/Author': 'Niforatos, Matthew James', '/Creator': 'Microsoft® Word for Microsoft 365', '/CreationDate': "D:20221108145745-05'00'", '/ModDate': "D:20221108145745-05'00'", '/Producer': 'Microsoft® Word for Microsoft 365', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://en.wikipedia.org/wiki/Cryptographic_nonce']}}}.

The following properties were deleted: ['cert_id', 'algorithms', 'clean_cert_ids', 'st_metadata'].

The computed heuristics were updated.

The following values were inserted: {'policy_prunned_references': {'_type': 'Set', 'elements': []}, 'module_prunned_references': {'_type': 'Set', 'elements': []}, 'policy_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'module_processed_references': {'_type': 'sec_certs.sample.certificate.References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'direct_transitive_cves': None, 'indirect_transitive_cves': None}.

The algorithms property was set to {'_type': 'Set', 'elements': ['DRBG#66', 'CVL#937', 'KAS#937', 'AES#A2347', 'KBKDF#112', 'ECDSA#A2347', 'HMAC#890', 'RSA#A2347', 'SHS#1358', 'AES#1519', 'DRBG#A2347', 'SHS#1357', 'DSA#A2347', 'SHS#A2346', 'HMAC#889', 'CVL#A2347', 'KAS-SSC#A2347', 'HMAC#A2347', 'SHS#A2347', 'AES#1520', 'KAS#A2347']}.

The following properties were deleted: ['keywords', 'unmatched_algs', 'clean_cert_ids', 'st_references', 'web_references'].

The state was updated.

The following values were inserted: {'module_download_ok': True, 'policy_download_ok': True, 'policy_convert_garbage': False, 'policy_convert_ok': True, 'module_extract_ok': True, 'policy_extract_ok': True, 'policy_pdf_hash': '3ba6cdd7bfb55e820999ee4e0dfbcc5d7aa824c9e2be11e7ea024ae100e90481', 'policy_txt_hash': '38aa464b45da1f204b6afae69ccd7b2182dbeaabbab5c4bb01c488e8506680c7'}.

The following properties were deleted: ['sp_path', 'html_path', 'tables_done', 'file_status', 'txt_state'].
07.12.2022

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4385,
  "dgst": "caaafd2b3354748b",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "CVL#A2347",
        "AES#A2347",
        "ECDSA#A2347",
        "KAS#937",
        "SHS#A2347",
        "DRBG#66",
        "KAS#A2347",
        "KBKDF#112",
        "HMAC#890",
        "CVL#937",
        "DSA#A2347",
        "RSA#A2347",
        "AES#1520",
        "SHS#1357",
        "SHS#A2346",
        "DRBG#A2347",
        "HMAC#A2347",
        "KAS-SSC#A2347",
        "SHS#1358",
        "HMAC#889",
        "AES#1519"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "5.4.7"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 3
          },
          "ECDH": {
            "ECDH": 8
          },
          "ECDSA": {
            "ECDSA": 29
          }
        },
        "FF": {
          "DH": {
            "DH": 9,
            "Diffie-Hellman": 10
          },
          "DSA": {
            "DSA": 4
          }
        },
        "RSA": {
          "RSA2048": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 5
        },
        "CCM": {
          "CCM": 2
        },
        "ECB": {
          "ECB": 4
        },
        "GCM": {
          "GCM": 5
        },
        "OFB": {
          "OFB": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 7,
          "IKEv2": 1
        },
        "IPsec": {
          "IPsec": 44
        },
        "SSH": {
          "SSH": 32
        },
        "TLS": {
          "SSL": {
            "SSL": 36
          },
          "TLS": {
            "TLS": 25,
            "TLS 1.2": 2
          }
        },
        "VPN": {
          "VPN": 2
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 3
        },
        "KEX": {
          "Key Exchange": 1
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 20,
          "P-384": 14,
          "secp256r1": 1,
          "secp384r1": 1
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1,
          "#112": 2,
          "#937": 2
        }
      },
      "fips_certlike": {
        "Certlike": {
          "# A2347": 2,
          "AES 1519": 1,
          "CVL 937": 1,
          "Diffie-Hellman 256": 1,
          "HMAC 889": 2,
          "HMAC 890": 2,
          "HMAC-SHA1": 12,
          "HMAC-SHA256": 10,
          "HMAC-SHA384": 12,
          "HMAC-SHA512": 4,
          "HMACSHA1": 1,
          "HMACSHA256": 1,
          "RSA2048": 1,
          "SHA 1 , 256": 6,
          "SHA 256": 1,
          "SHA( 1": 1,
          "SHA( 256": 2,
          "SHA- 512": 1,
          "SHA-1": 8,
          "SHA-256": 16,
          "SHA-384": 8,
          "SHA-512": 6,
          "SHA1": 2,
          "SHA256": 9,
          "SHA384": 1,
          "SHA512": 1,
          "SHS 1357": 1,
          "SHS 1358": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 1
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 1
          }
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 8,
            "SHA1": 2
          },
          "SHA2": {
            "SHA-256": 16,
            "SHA-384": 8,
            "SHA-512": 6,
            "SHA256": 9,
            "SHA384": 1,
            "SHA512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 41
        },
        "RNG": {
          "RNG": 1
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 10,
          "FIPS 180-4": 4,
          "FIPS 186-2": 1,
          "FIPS 186-4": 1,
          "FIPS 197": 3,
          "FIPS186-4": 7,
          "FIPS198-1": 3
        },
        "NIST": {
          "SP 800-133": 1,
          "SP 800-38A": 3,
          "SP 800-90A": 18,
          "SP 800-90B": 1
        },
        "RFC": {
          "RFC 4106": 1,
          "RFC 5288": 1,
          "RFC 7296": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 8,
            "AES-": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 28
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {
        "TLS": {
          "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA": 1,
          "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 1,
          "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA": 1
        }
      },
      "vendor": {
        "Broadcom": {
          "Broadcom": 25
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Niforatos, Matthew James",
      "/CreationDate": "D:20221108145745-05\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20221108145745-05\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "pdf_file_size_bytes": 1140955,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://en.wikipedia.org/wiki/Cryptographic_nonce"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 39
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "3ba6cdd7bfb55e820999ee4e0dfbcc5d7aa824c9e2be11e7ea024ae100e90481",
    "policy_txt_hash": "38aa464b45da1f204b6afae69ccd7b2182dbeaabbab5c4bb01c488e8506680c7"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode. The protocol SNMP shall not be used when operated in FIPS mode",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/December 2022_030123_0646_signed.pdf",
    "date_sunset": "2026-09-21",
    "description": "The Fortress Mesh Point is an all-in-one network access device housed in a rugged compact chassis, with the most stringent security available today built in. It can serve as a wireless bridge, a WLAN access point, and an eight-port LAN switch, while performing all the functions of a Fortress controller device: encrypting wireless traffic and providing Multi-factor Authentication for devices on the network it protects.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Design Assurance: Level 3"
    ],
    "fw_versions": "5.4.7",
    "historical_reason": null,
    "hw_versions": "ES2440, ES520v1, ES520v2 and ES820",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "Fortress Mesh Points",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-12-06",
        "lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
        "validation_type": "Initial"
      }
    ],
    "vendor": "General Dynamics Mission Systems",
    "vendor_url": "http://gdmissionsystems.com"
  }
}

Sections

Fortress Mesh Points

Certificate #4385

Webpage information

Security policy

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Elliptic Curves

Block cipher modes

TLS cipher suites

Vendor

Security level

Standards

File metadata

Heuristics

References

Updates Feed

Certificate changed

Certificate changed

Certificate changed

New certificate

Raw data

Sections

Fortress Mesh Points

Certificate #4385

Webpage information

Security policy

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Elliptic Curves

Block cipher modes

TLS cipher suites

Device

Vendor

Security

Security level

Other

Standards

File metadata

Heuristics

References

Updates Feed

Raw data

Toggle raw data