You are here
Fortinet security solutions are tested, validated, and certified by a broad range of industry organizations. FortiGuard Labs leads industry collaboration efforts to improve protection levels for every organization.
NSS Labs Recommends Fortinet FortiGate NGFWs based on high levels of security effectiveness and performance/value. In 2014 NGFW industry tests, NSS Labs reported that the FortiGates tested proved effective against all evasion techniques; effective in enforcing firewall, user ID and application control policies; passed all stability and reliability tests; and delivered the industry’s best performance/value.
In its first-ever web application firewall testing, NSS Labs reported that the FortiWeb-1000D achieved an overall block rate of 99.85% at $2.77 TCO per protected Connection Per Second that placed it in the “Recommended” section of their Web Application Firewall Security Value Map.
Fortinet’s FortiSandbox-3000D is one of the top rated Breach Detection Systems (BDS), delivering 99 percent breach detection and zero false positives, based on real-world comparative analysis conducted by third party NSS Labs.
UC APL certification qualifies designated Fortinet products for sale to Department of Defense (DoD) agencies based on stringent Security Technical Implementation Guide (STIG) testing, a standardized methodology for the secure installation and maintenance of computer software and hardware. To achieve UC APL certification, all approved Fortinet products were tested following STIG guidelines and checklists applied to System Under Test.
Based on NSS Labs’ test results, the FortiGate-3600C is one of the top performing systems out of nine next generation firewall products.
Based on NSS Labs’ test results, the FortiGate-800C scored 100% for Stability, 100% for Evasion, 100% for Leakage and 100% in the central management review. All of which resulted in a TCO of $4 per protected megabit and 100% test scores for security and management effectiveness.
NSS Labs tested Fortinet’s FortiGate-3240C with FortiOS 4.0 MR3 against its IPS test methodology, which is composed of 1,486 live exploits. The FortiGate-3240C blocked 95.0% of attacks against client applications and 96.0% overall and correctly identified 100% of NSS’ evasion attempts without error.
FortiGate and FortiWeb products are evaluated against ICSA criteria in 6 popular Certification programs. ICSA Labs manages and sponsors security consortia that provide a forum for intelligence sharing among the leading vendors of security products. In addition, ICSA Labs publishes surveys, security industry studies and buyers' guides for computer security products.
FortiGate products running FortiOS 3.0 MR7 and FortiOS 4.0 MR3 conform to IPv6 Ready Logo Phase 2 Core test specifications as a router product. IPv6 readiness provides confidence in environments running IPv6 networks or IPv4 networks being transitioned to the new protocol.
Fortinet products are recognized as CVE-Compatible by MITRE. CVE is a dictionary of publicly known information security vulnerabilities and exposures. CVE's common identifiers enable data exchange between security products and provide a baseline index point for evaluating coverage of tools and services.
Fortinet products have received EAL2+ and EAL4+ certifications through the Communications Security Establishment of Canada. Common Criteria evaluations involve formal rigorous analysis and testing to examine security aspects of a product or system. Extensive testing activities involve a comprehensive and formally repeatable process, confirming that the security product functions as claimed by the manufacturer. Security weaknesses and potential vulnerabilities are specifically examined during an evaluation.
More Info on latest FortiOS 4.0 validation at: https://www.cse-cst.gc.ca/en/system/files/pdf_documents/fortinet-fortigate-v40-cert-eng_0.pdf
Fortinet products, including FortiGate, FortiAnalyzer, FortiMail and FortiClient are tested to FIPS 140-2 Level 1 and Level 2 requirements. The standards focus on the security and cryptographic requirements to cover areas related to the secure design and implementation of cryptographic modules.
Fortinet's offers a range of FortiAP Wireless Access Points and FortiGate Controller combinations that have achieved Wi-Fi CERTIFIED™ status from the Wi-Fi Alliance®. The Wi-Fi CERTIFIED logo ensures operability in numerous configurations and interoperability with other Wi-Fi CERTIFIED equipment. The FortiAP Thin Access Point supporting various standards including WPA®, and WMM® for multimedia quality of service.
Fortinet Single Sign-On (FSSO) agent has been certified to be compliant with the Microsoft Windows 2008 Server R2 certification program requirements.
Fortinet Canada offices are registered against the ISO 9001:2008 Quality Management Systems standard. These offices represent key research and development centers for the company for activities such as hardware and software design and development, the FortiGuard™ network services, technical documentation and manufacturing operations.