Fortinet Up for Common Criteria V2.0 Cert

SUNNYVALE, Calif. -- Fortinet® – the pioneer and leading provider of unified threat management (UTM) solutions – today announced that its FortiOS 3.0 operating system has achieved a new milestone as the most extensively tested and government certified network security appliance operating system available for the protection of United State s and Canadian federal agencies. Fortinet is the first and only network security vendor to be registered as “in evaluation” against the latest EAL4+ Medium Robustness V2.0 protection profile for application level firewalls. (Medium Robustness V2.0 is the most stringent of the criteria that the Department of Defense requires for security products.) This protection profile replaces the older Medium Robustness V1.0 protection profile for application firewalls that has been sunset and downgraded to EAL2+. Booz Allen Hamilton’s Common Criteria Test Laboratory is conducting the evaluations.

Government agencies are now being mandated to purchase security products that are certified, or registered as “in evaluation,” against any applicable Medium Robustness V2.0 protection profiles. By being the first and only network security vendor in evaluation, Fortinet is the only vendor that meets the current Department of Defense purchasing requirements for Common Criteria certification.

In addition, Fortinet’s FortiOS 3.0 and specific FortiGate multi-threat security appliance models have been certified to Federal Information Processing Standards (FIPS) 140-2 Level 2. This is Fortinet’s second successful round of FIPS certification for the Fortinet Federal Certification Program adding several of their latest platforms to the NIST FIPS portfolio.

“Being able to protect Department of Defense networks with both Common Criteria and FIPS 140-2 Level 2 protection while stopping today's more sophisticated blended and distributed attacks is critical to our Federal government customers,” said Brent Martinez, president of Secure Network Innovation, Inc, which supports defense missions at U.S. Army Dugway Proving Ground in Utah. “With no other vendors in evaluation, Fortinet is currently the only Common Criteria MR V2.0 and FIPS 140-2 certified security vendor capable of defending our networks.”

Fortinet Inc.