This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	FortiOS	FortiOS
cert_id	1401	1431
dgst	afd679cd3f9a81fd	ffab53082b58bed6
heuristics/algorithms	RNG#639, HMAC#658, SHS#1069, SHS#1068, Triple-DES#835, Triple-DES#836, RSA#546, HMAC#657, AES#1156, AES#1155, AES#1154	AES#1409, Triple-DES#962, Triple-DES#957, RSA#686, HMAC#825, AES#1404, RNG#770, SHS#1274, SHS#1279, HMAC#830
heuristics/cpe_matches	{}	cpe:2.3:o:fortinet:fortios:4.0.0:::::::, cpe:2.3:o:fortinet:fortios:4.0.1:::::::, cpe:2.3:o:fortinet:fortios:4.0.3:::::::, cpe:2.3:o:fortinet:fortios:4.0.2:::::::, cpe:2.3:o:fortinet:fortios:4.0.4:::::::*
heuristics/direct_transitive_cves	CVE-2001-0889, CVE-2015-7833, CVE-2002-1232, CVE-2003-0247, CVE-2002-0080, CVE-2003-0194, CVE-2018-1111, CVE-2003-0364, CVE-2002-0638, CVE-2002-1155, CVE-2017-1000253, CVE-2007-3103, CVE-1999-1288, CVE-2002-0045, CVE-2016-7091, CVE-2003-0434, CVE-2001-0690, CVE-2001-1383, CVE-2003-0188, CVE-2000-0701, CVE-2003-0248, CVE-1999-0798, CVE-2002-1160, CVE-1999-0297, CVE-1999-0037, CVE-2001-0635, CVE-2001-0886, CVE-2003-0354, CVE-2001-0787, CVE-2003-0041, CVE-2002-0836, CVE-2002-0083, CVE-2001-1002, CVE-2003-0461, CVE-2000-0017, CVE-1999-0894, CVE-2001-0859, CVE-2001-0977, CVE-2003-0370, CVE-2002-0044, CVE-2001-0872, CVE-2000-1207, CVE-2003-0464	{}
heuristics/extracted_versions	4.00	4.0
heuristics/indirect_transitive_cves	CVE-2001-0889, CVE-2003-0247, CVE-2010-4805, CVE-2002-0080, CVE-2000-1220, CVE-1999-0872, CVE-2017-1000253, CVE-1999-0034, CVE-2002-0045, CVE-2014-6271, CVE-2015-2877, CVE-2010-0013, CVE-2011-2897, CVE-1999-0390, CVE-2000-0170, CVE-2006-5170, CVE-1999-1347, CVE-2001-0859, CVE-1999-0002, CVE-2005-0087, CVE-2000-1207, CVE-2011-3188, CVE-2011-2525, CVE-1999-0041, CVE-2003-0364, CVE-2002-0638, CVE-1999-1332, CVE-1999-1288, CVE-1999-0868, CVE-2011-1145, CVE-2001-1383, CVE-2005-2492, CVE-2000-0701, CVE-2011-3585, CVE-2007-5494, CVE-1999-0798, CVE-2002-1160, CVE-2009-2416, CVE-2015-1819, CVE-2003-0354, CVE-2001-0886, CVE-2009-1837, CVE-2000-0017, CVE-2001-0977, CVE-2007-6285, CVE-2010-4251, CVE-2003-0370, CVE-2002-0044, CVE-1999-1346, CVE-2001-0872, CVE-1999-0009, CVE-2015-7833, CVE-2002-1232, CVE-2009-4067, CVE-1999-1348, CVE-2002-1155, CVE-2016-7091, CVE-2001-0690, CVE-1999-0042, CVE-2009-0846, CVE-1999-0037, CVE-2001-0635, CVE-1999-1299, CVE-2012-1097, CVE-1999-0130, CVE-2002-0083, CVE-2003-0461, CVE-1999-0769, CVE-1999-0894, CVE-2011-4967, CVE-2014-7169, CVE-2003-0434, CVE-2003-0464, CVE-2007-5079, CVE-1999-1329, CVE-2011-2699, CVE-2018-1111, CVE-2003-0194, CVE-2011-2717, CVE-2011-3363, CVE-1999-0192, CVE-2007-3103, CVE-1999-1182, CVE-2003-0188, CVE-1999-0043, CVE-2003-0248, CVE-2011-3191, CVE-1999-0297, CVE-2016-4983, CVE-2001-0787, CVE-2000-0118, CVE-2003-0041, CVE-2002-0836, CVE-2001-1002, CVE-1999-1333, CVE-1999-1335, CVE-2007-2030	{}
heuristics/module_processed_references/directly_referenced_by	{}	{}
heuristics/module_processed_references/directly_referencing	{}	{}
heuristics/module_processed_references/indirectly_referenced_by	{}	{}
heuristics/module_processed_references/indirectly_referencing	{}	{}
heuristics/module_prunned_references	{}	{}
heuristics/policy_processed_references/directly_referenced_by	2441	{}
heuristics/policy_processed_references/directly_referencing	{}	{}
heuristics/policy_processed_references/indirectly_referenced_by	2446, 2721, 3733, 2742, 2633, 2798, 2441, 2447, 2630	{}
heuristics/policy_processed_references/indirectly_referencing	{}	{}
heuristics/policy_prunned_references	{}	{}
heuristics/related_cves	{}	CVE-2020-15938, CVE-2020-6648, CVE-2017-17544, CVE-2017-3132, CVE-2020-12812, CVE-2018-9185, CVE-2019-5587, CVE-2016-1909, CVE-2017-3133, CVE-2018-13371, CVE-2018-13366, CVE-2017-14187, CVE-2014-0351, CVE-2019-17655, CVE-2019-17656, CVE-2022-23438, CVE-2017-14186, CVE-2018-9195, CVE-2016-8492, CVE-2015-3626, CVE-2023-45583, CVE-2018-13383, CVE-2018-13365, CVE-2019-15703, CVE-2018-13376, CVE-2019-6693, CVE-2018-13367, CVE-2013-4604, CVE-2019-5593, CVE-2021-24018, CVE-2019-15705, CVE-2018-13384, CVE-2015-5965, CVE-2017-14190, CVE-2021-44168, CVE-2018-13380, CVE-2018-13374, CVE-2014-2216, CVE-2018-13381, CVE-2019-5591
heuristics/verified_cpe_matches	{}	{}
pdf_data/keywords/fips_cert_id
pdf_data/keywords/fips_security_level	Level: Level 1: 3	Level: Level 1: 3
pdf_data/keywords/fips_certlike	Certlike: AES 1154: 1 HMAC SHA-1: 8 HMAC SHA-1 657: 1 HMAC-SHA-1: 2 PKCS1: 2 RSA PKCS1: 2 SHA-1: 10 SHA-1 1068: 1 SHA-1 657: 1	Certlike: AES 1404: 1 HMAC SHA-1: 8 HMAC SHA-1 825: 1 HMAC SHA-256: 1 HMAC-SHA-1: 2 PKCS1: 2 RSA PKCS1: 2 SHA-1: 10 SHA-1 1274: 1 SHA-1 825: 1 SHA-256: 2
pdf_data/keywords/vendor
pdf_data/keywords/eval_facility
pdf_data/keywords/symmetric_crypto	AES_competition: AES: AES: 18 DES: 3DES: Triple-DES: 6 DES: DES: 1 constructions: MAC: HMAC: 10	AES_competition: AES: AES: 18 DES: 3DES: Triple-DES: 6 DES: DES: 1 constructions: MAC: HMAC: 11
pdf_data/keywords/asymmetric_crypto	FF: DH: Diffie-Hellman: 4	FF: DH: Diffie-Hellman: 4
pdf_data/keywords/pq_crypto
pdf_data/keywords/hash_function	MD: MD5: MD5: 2 SHA: SHA1: SHA-1: 12	MD: MD5: MD5: 2 SHA: SHA1: SHA-1: 12 SHA2: SHA-256: 2
pdf_data/keywords/crypto_scheme	KA: Key agreement: 1	KA: Key agreement: 1
pdf_data/keywords/crypto_protocol	IKE: IKE: 17 SSH: SSH: 11 TLS: SSL: SSL: 2 TLS: TLS: 3 VPN: VPN: 14	IKE: IKE: 17 SSH: SSH: 11 TLS: SSL: SSL: 2 TLS: TLS: 3 VPN: VPN: 15
pdf_data/keywords/randomness	RNG: RNG: 11	RNG: RNG: 11
pdf_data/keywords/cipher_mode	CBC: CBC: 2	CBC: CBC: 2
pdf_data/keywords/ecc_curve
pdf_data/keywords/crypto_engine
pdf_data/keywords/tls_cipher_suite
pdf_data/keywords/crypto_library
pdf_data/keywords/vulnerability
pdf_data/keywords/side_channel_analysis
pdf_data/keywords/device_model
pdf_data/keywords/tee_name
pdf_data/keywords/os_name
pdf_data/keywords/cplc_data
pdf_data/keywords/ic_data_group
pdf_data/keywords/standard_id	FIPS: FIPS 140: 1 FIPS 140-2: 31 PKCS: PKCS1: 2	FIPS: FIPS 140: 1 FIPS 140-2: 32 PKCS: PKCS1: 2
pdf_data/keywords/javacard_version
pdf_data/keywords/javacard_api_const
pdf_data/keywords/javacard_packages
pdf_data/keywords/certification_process
pdf_data/policy_metadata	/Author: akaye /CreationDate: D:20100728093248-04'00' /Creator: PScript5.dll Version 5.2.2 /ModDate: D:20100830131544-04'00' /Producer: Acrobat Elements 8.0.0 (Windows) /Title: FOS 4.0 FIPS Level 1 Security Policy Rev1.book pdf_file_size_bytes: 228849 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 18	/Author: akaye /CreationDate: D:20100830131130-04'00' /Creator: PScript5.dll Version 5.2.2 /ModDate: D:20101026151900-04'00' /Producer: Acrobat Elements 8.0.0 (Windows) /Title: FOS 4.2 FIPS Level 1 Security Policy Rev1.book pdf_file_size_bytes: 453299 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 18
state/module_download_ok	True	True
state/module_extract_ok	True	True
state/policy_convert_garbage	False	False
state/policy_convert_ok	True	True
state/policy_download_ok	True	True
state/policy_extract_ok	True	True
state/policy_pdf_hash	Different	Different
state/policy_txt_hash	Different	Different
web_data/caveat	When operated in FIPS mode	When operated in FIPS mode
web_data/certificate_pdf_url	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt1401.pdf	https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt1431.pdf
web_data/date_sunset
web_data/description	The FortiOS is a firmware based operating system that runs exclusively on FortinetÆs FortiGate/FortiWiFi product family (PC-based, purpose built appliances)The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.	The FortiOS is a firmware based operating system that runs exclusively on FortinetÆs FortiGate/FortiWiFi product family (PC-based, purpose built appliances)The FortiOS provides integrated firewall, VPN, antivirus, antispam, intrusion prevention, content filtering and traffic shaping and HA capabilities.
web_data/embodiment	Multi-Chip Stand Alone	Multi-Chip Stand Alone
web_data/exceptions	Cryptographic Module Ports and Interfaces: Level 3, Roles, Services, and Authentication: Level 3, Design Assurance: Level 3, Tested: FortiGate-310B, FortiGate-500A, FortiGate-620B, FortiGate-800, FortiGate-3600, FortiGate-3600A, FortiGate-5001A-DW, FortiWiFi-50B, FortiWiFi-60B, None	Cryptographic Module Ports and Interfaces: Level 3, Roles, Services, and Authentication: Level 3, Design Assurance: Level 3, Tested: FortiGate-80C, FortiGate-200B, FortiGate-310B, FortiGate-620B, FortiGate-800, FortiGate-1240B, FortiGate-3016B, FortiGate-3600A, FortiGate-3810A-E4, FortiGate-5001A-DW
web_data/fw_versions	F, o, r, t, i, O, S, , 4, ., 0, 0, ,, , b, u, i, l, d, 6, 2, 0, 4, ,, , 0, 9, 1, 1, 1, 3	F, o, r, t, i, O, S, , 4, ., 0, ,, , b, u, i, l, d, 6, 3, 4, 1, ,, , 1, 0, 0, 6, 1, 7, None
web_data/historical_reason	RNG SP800-131A Revision 1 Transition	RNG SP800-131A Revision 1 Transition
web_data/hw_versions	[]	[]
web_data/level	1	1
web_data/mentioned_certs
web_data/module_name	FortiOS	FortiOS
web_data/module_type	Firmware	Firmware
web_data/revoked_link	None	None
web_data/revoked_reason	None	None
web_data/standard	FIPS 140-2	FIPS 140-2
web_data/status	historical	historical
web_data/sw_versions	None	None
web_data/tested_conf	[]	[]
web_data/validation_history	date: 10.09.2010 lab: DOMUS validation_type: Initial	date: 03.11.2010 lab: DOMUS validation_type: Initial
web_data/vendor	Fortinet, Inc.	Fortinet, Inc.
web_data/vendor_url	http://www.fortinet.com	http://www.fortinet.com