This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only different attributes are shown. Use the button below to show/hide all attributes.

	FortiGate-VM	FortiGate-VM
cert_id	4073	4607
web_data/caveat	When operated in FIPS mode and installed, initialized and configured as specified in the FIPS 140-2 Compliant Operation Section of the Security Policy and with the entropy token installed as indicated in the Security Policy. Authentication at level 3 is only applicable when identity-based authentication is enforced for the User role. No assurance of the minimum strength of generated keys	When operated in FIPS mode and installed, initialized and configured as specified in the FIPS 140-2 Compliant Operation Section of the Security Policy and with the entropy token installed as indicated in the Security Policy. Authentication at level 3 is only applicable when identity-based authentication is enforced for the User role. No assurance of the minimum strength of generated keys
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2021_011221_0923_signed.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2023_101023_1100 signed (2).pdf
web_data/date_sunset	None	2026-09-21
web_data/description	The FortiGate-VM is a software module designed to execute on a General Purpose Computer (GPC) hardware platform running the VMware hypervisor. The module provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering, traffic shaping, and HA capabilities.	The FortiGate-VM is a software module designed to execute on a General Purpose Computer (GPC) hardware platform running the VMware hypervisor. The module provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering, traffic shaping, and HA capabilities.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Roles, Services, and Authentication: Level 3, Physical Security: N/A, Design Assurance: Level 2	Roles, Services, and Authentication: Level 3, Physical Security: N/A, Design Assurance: Level 2
web_data/fw_versions	None	None
web_data/historical_reason	SP 800-56Arev3 transition - replaced by certificate #4607	None
web_data/hw_versions	None	None
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	FortiGate-VM	FortiGate-VM
web_data/module_type	Software	Software
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	historical	active
web_data/sw_versions	FortiGate-VM 6.2, build 5611	FortiGate-VM 6.2, build 5203
web_data/tested_conf	FortiGate-VM on VMWare ESXi 6.7 running on a MilDef CS9121 (P/N: 211-3102 Ver: 001) with an Intel® Core™ i7-6822EQ processor and the Araneus Alea II entropy token (single-user mode), FortiGate-VM on VMWare ESXi 6.7 running on a PacStar 451 (P/N: 075-0451-165) with an Intel® Xeon® E-2276ME processor and the Araneus Alea II entropy token, FortiGate-VM on VMWare ESXi 6.7 running on a PacStar 451 (P/N: 075-0451-45) with an Intel® Xeon® E3-1515M processor and the Araneus Alea II entropy token, FortiGate-VM on VMWare ESXi 6.7 running on a PacStar 451 (P/N: 075-0451-55) with an Intel® Xeon® D-1559 processor and the Araneus Alea II entropy token	FortiGate-VM on VMWare ESXi 6.7 running on a MilDef CS9121 (P/N: 211-3102 Ver: 001) with an Intel® Core™ i7-6822EQ processor and the Araneus Alea II entropy token (single-user mode), FortiGate-VM on VMWare ESXi 6.7 running on a PacStar 451 (P/N: 075-0451-165) with an Intel® Xeon® E-2276ME processor and the Araneus Alea II entropy token, FortiGate-VM on VMWare ESXi 6.7 running on a PacStar 451 (P/N: 075-0451-45) with an Intel® Xeon® E3-1515M processor and the Araneus Alea II entropy token, FortiGate-VM on VMWare ESXi 6.7 running on a PacStar 451 (P/N: 075-0451-55) with an Intel® Xeon® D-1559 processor and the Araneus Alea II entropy token
web_data/vendor	Fortinet, Inc.	Fortinet, Inc.
web_data/vendor_url	http://www.fortinet.com	http://www.fortinet.com
pdf_data/keywords/asymmetric_crypto/ECC/ECC	ECC: 1	ECC: 1
pdf_data/keywords/asymmetric_crypto/ECC/ECDH/ECDH	6	5
pdf_data/keywords/asymmetric_crypto/ECC/ECDSA	ECDSA: 18	ECDSA: 18
pdf_data/keywords/asymmetric_crypto/FF/DH/DH	6	5
pdf_data/keywords/asymmetric_crypto/FF/DH/Diffie-Hellman	18	16
pdf_data/keywords/certification_process
pdf_data/keywords/cipher_mode/CBC	CBC: 3	CBC: 3
pdf_data/keywords/cipher_mode/CTR	CTR: 1	CTR: 1
pdf_data/keywords/cipher_mode/GCM/GCM	11	10
pdf_data/keywords/cplc_data
pdf_data/keywords/crypto_engine
pdf_data/keywords/crypto_library
pdf_data/keywords/crypto_protocol/IKE	IKE: 34 IKEv2: 2	IKE: 34 IKEv2: 3 IKEv1: 1
pdf_data/keywords/crypto_protocol/IKE/IKE	34	34
pdf_data/keywords/crypto_protocol/IKE/IKEv2	2	3
pdf_data/keywords/crypto_protocol/IPsec	IPsec: 30	IPsec: 30
pdf_data/keywords/crypto_protocol/SSH/SSH	16	14
pdf_data/keywords/crypto_protocol/TLS/SSL	SSL: 3	SSL: 3
pdf_data/keywords/crypto_protocol/TLS/TLS	TLS 1.1: 1 TLS: 23 TLS 1.0: 1	TLS 1.1: 2 TLS: 23 TLS 1.0: 1 TLS 1.2: 1
pdf_data/keywords/crypto_protocol/TLS/TLS/TLS	23	23
pdf_data/keywords/crypto_protocol/TLS/TLS/TLS 1.0	1	1
pdf_data/keywords/crypto_protocol/TLS/TLS/TLS 1.1	1	2
pdf_data/keywords/crypto_protocol/VPN	VPN: 23	VPN: 23
pdf_data/keywords/crypto_scheme	KA: Key agreement: 2	KA: Key agreement: 2
pdf_data/keywords/device_model
pdf_data/keywords/ecc_curve/Brainpool	brainpoolP224r1: 1 brainpoolP256r1: 1 brainpoolP384r1: 1 brainpoolP512r1: 1	brainpoolP224r1: 1 brainpoolP256r1: 1 brainpoolP384r1: 1 brainpoolP512r1: 1
pdf_data/keywords/ecc_curve/Curve	Curve25519: 1	Curve25519: 1
pdf_data/keywords/ecc_curve/NIST/P-256	16	18
pdf_data/keywords/ecc_curve/NIST/P-384	12	12
pdf_data/keywords/ecc_curve/NIST/P-521	12	14
pdf_data/keywords/ecc_curve/NIST/secp256r1	1	1
pdf_data/keywords/ecc_curve/NIST/secp384r1	1	1
pdf_data/keywords/ecc_curve/NIST/secp521r1	1	1
pdf_data/keywords/eval_facility
pdf_data/keywords/fips_cert_id
pdf_data/keywords/fips_certlike/Certlike	HMAC-SHA-256: 4 HMAC SHA-1: 7 HMAC SHA-256: 10 HMAC SHA-384: 3 HMAC SHA-512: 3 SHA-1: 14 SHA-224: 2 SHA-256: 13 SHA-384: 5 SHA-512: 5 SHA1: 1 SHA2-256: 4 SHA2-384: 2 SHA2-512: 3 SHA2- 384: 1 SHA2- 256: 1 RSA PKCS 1: 1 AES-256: 1 AES (128: 9 AES 256: 1 AES 128: 1 PKCS 1: 1	HMAC-SHA-256: 4 HMAC SHA-1: 7 HMAC SHA-256: 10 HMAC SHA-384: 3 HMAC SHA-512: 3 SHA-1: 14 SHA-224: 2 SHA-256: 13 SHA-384: 5 SHA-512: 5 SHA1: 1 SHA2-256: 2 SHA2-384: 1 SHA2-512: 2 SHA2- 384: 1 RSA PKCS 1: 1 AES-256: 1 AES (128: 9 AES 256: 1 AES 128: 1 PKCS 1: 1
pdf_data/keywords/fips_certlike/Certlike/AES (128	9	9
pdf_data/keywords/fips_certlike/Certlike/AES 128	1	1
pdf_data/keywords/fips_certlike/Certlike/AES 256	1	1
pdf_data/keywords/fips_certlike/Certlike/AES-256	1	1
pdf_data/keywords/fips_certlike/Certlike/HMAC SHA-1	7	7
pdf_data/keywords/fips_certlike/Certlike/HMAC SHA-256	10	10
pdf_data/keywords/fips_certlike/Certlike/HMAC SHA-384	3	3
pdf_data/keywords/fips_certlike/Certlike/HMAC SHA-512	3	3
pdf_data/keywords/fips_certlike/Certlike/HMAC-SHA-256	4	4
pdf_data/keywords/fips_certlike/Certlike/PKCS 1	1	1
pdf_data/keywords/fips_certlike/Certlike/RSA PKCS 1	1	1
pdf_data/keywords/fips_certlike/Certlike/SHA-1	14	14
pdf_data/keywords/fips_certlike/Certlike/SHA-224	2	2
pdf_data/keywords/fips_certlike/Certlike/SHA-256	13	13
pdf_data/keywords/fips_certlike/Certlike/SHA-384	5	5
pdf_data/keywords/fips_certlike/Certlike/SHA-512	5	5
pdf_data/keywords/fips_certlike/Certlike/SHA1	1	1
pdf_data/keywords/fips_certlike/Certlike/SHA2- 384	1	1
pdf_data/keywords/fips_certlike/Certlike/SHA2-256	4	2
pdf_data/keywords/fips_certlike/Certlike/SHA2-384	2	1
pdf_data/keywords/fips_certlike/Certlike/SHA2-512	3	2
pdf_data/keywords/fips_security_level	Level: Level 1: 3 level 3: 1	Level: Level 1: 3 level 3: 1
pdf_data/keywords/hash_function	SHA: SHA1: SHA-1: 14 SHA1: 1 SHA2: SHA-224: 2 SHA-256: 13 SHA-384: 5 SHA-512: 5	SHA: SHA1: SHA-1: 14 SHA1: 1 SHA2: SHA-224: 2 SHA-256: 13 SHA-384: 5 SHA-512: 5
pdf_data/keywords/ic_data_group
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/javacard_version
pdf_data/keywords/os_name
pdf_data/keywords/pq_crypto
pdf_data/keywords/randomness	PRNG: DRBG: 37 RNG: RBG: 1	PRNG: DRBG: 37 RNG: RBG: 1
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/standard_id/FIPS	FIPS 140-2: 43 FIPS 140: 2 FIPS140-2: 1	FIPS 140-2: 43 FIPS 140: 2
pdf_data/keywords/standard_id/FIPS/FIPS 140	2	2
pdf_data/keywords/standard_id/FIPS/FIPS 140-2	43	43
pdf_data/keywords/standard_id/NIST	SP 800-90B: 1 NIST SP 800-90A: 1 SP 800-52: 1 SP 800-133: 1 SP 800-90A: 1	SP 800-90B: 1 NIST SP 800-90A: 1 SP 800-52: 1 SP 800-133: 1 SP 800-90A: 1
pdf_data/keywords/standard_id/PKCS	PKCS 1: 1	PKCS 1: 1
pdf_data/keywords/standard_id/RFC	RFC 7296: 1 RFC 5246: 1 RFC 5288: 1	RFC 7296: 1 RFC 5246: 1 RFC 5288: 1
pdf_data/keywords/symmetric_crypto/AES_competition/AES	AES-256: 1 AES: 29 AES-: 1	AES-256: 1 AES: 29
pdf_data/keywords/symmetric_crypto/AES_competition/AES/AES	29	29
pdf_data/keywords/symmetric_crypto/AES_competition/AES/AES-256	1	1
pdf_data/keywords/symmetric_crypto/constructions/MAC/HMAC	24	25
pdf_data/keywords/symmetric_crypto/constructions/MAC/HMAC-SHA-256	2	2
pdf_data/keywords/tee_name		IBM: SSC: 1
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/vendor
pdf_data/keywords/vulnerability
pdf_data/policy_metadata//Author	Fortinet Technical Documentation	Fortinet Technical Documentation
pdf_data/policy_metadata//CreationDate	D:20211026160730-04'00'	D:20230906131111-04'00'
pdf_data/policy_metadata//Keywords
pdf_data/policy_metadata//ModDate	D:20211026160730-04'00'	D:20230906131111-04'00'
pdf_data/policy_metadata//Producer	madbuild	madbuild
pdf_data/policy_metadata//Subject
pdf_data/policy_metadata//Title	FortiGate-VM 6.x FIPS Level 1 Security Policy	FortiGate-VM 6.x FIPS Level 1 Security Policy
pdf_data/policy_metadata/pdf_file_size_bytes	325186	331672
pdf_data/policy_metadata/pdf_hyperlinks	https://video.fortinet.com/, https://support.fortinet.com/, https://blog.fortinet.com/, http://fortiguard.com/, http://csrc.nist.gov/groups/STM/cmvp/index.html, mailto:[email protected], http://forticast.fortinet.com/, http://www.fortinet.com/products, https://www.fortinet.com/doc/legal/EULA.pdf, http://www.fortinet.com/support, http://docs.fortinet.com/, https://docs.fortinet.com/, https://fortiguard.com/, http://kb.fortinet.com/, https://www.fortinet.com/corporate/about-us/privacy.html, https://training.fortinet.com/, https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/ac683e6d-2981-11e9-94bf-00505692583a/FOS54-FIPS-CC-Technote_-_NGFW.pdf, http://www.fortinet.com/contact	https://video.fortinet.com/, https://support.fortinet.com/, https://blog.fortinet.com/, http://fortiguard.com/, http://csrc.nist.gov/groups/STM/cmvp/index.html, mailto:[email protected], http://forticast.fortinet.com/, http://www.fortinet.com/products, https://www.fortinet.com/doc/legal/EULA.pdf, http://www.fortinet.com/support, http://docs.fortinet.com/, https://docs.fortinet.com/, https://fortiguard.com/, http://kb.fortinet.com/, https://www.fortinet.com/corporate/about-us/privacy.html, https://training.fortinet.com/, https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/ac683e6d-2981-11e9-94bf-00505692583a/FOS54-FIPS-CC-Technote_-_NGFW.pdf, http://www.fortinet.com/contact
pdf_data/policy_metadata/pdf_is_encrypted	False	False
pdf_data/policy_metadata/pdf_number_of_pages	28	28
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	22255700c182e675d96ee86394742d9a1f7a5a36bfb564773d8b6fe9ea5d6e49	4f96236e29c3c485a451eab3597afc27423a0caa2b139420860987d44979100b
state/policy_txt_hash	7d6db6b2495bb86923880bccba6e96ac7b8ce31833a71ffb029c26cdd6d06cbe	2c66deaedbf3b86510aea8799bdc942b7fa369e270ac34ffa82bb1b183ae64e4
heuristics/cpe_matches	None	None
heuristics/direct_transitive_cves	None	None
heuristics/extracted_versions	-	-
heuristics/indirect_transitive_cves	None	None
heuristics/module_processed_references	_type: sec_certs.sample.certificate.References directly_referenced_by: None indirectly_referenced_by: None directly_referencing: None indirectly_referencing: None	_type: sec_certs.sample.certificate.References directly_referenced_by: None indirectly_referenced_by: None directly_referencing: None indirectly_referencing: None
heuristics/module_prunned_references
heuristics/policy_processed_references	_type: sec_certs.sample.certificate.References directly_referenced_by: None indirectly_referenced_by: None directly_referencing: None indirectly_referencing: None	_type: sec_certs.sample.certificate.References directly_referenced_by: None indirectly_referenced_by: None directly_referencing: None indirectly_referencing: None
heuristics/policy_prunned_references
heuristics/related_cves	None	None
heuristics/verified_cpe_matches	None	None
dgst	2478b5cdde898af6	d79d5ca8d078fe26