Federal Information Processing Standard (FIPS) 140-3

NIST, the National Institute of Standards and Technology, developed the 140-3 standard to define minimum security requirements for cryptographic modules like those found in SonicWall’s Next-Generation Firewalls and Remote Access products. A cryptographic module is defined as "the set of hardware, software, and/or firmware that implements approved security functions (including cryptographic algorithms and key generation) and is contained within the cryptographic boundary." (NIST SP 800-175B Rev. 1).

The Cryptographic Module Validation Program (CMVP), a joint effort between NIST and the Canadian Centre for Cyber Security (CCCS), validates cryptographic modules as part of the FIPS 140-3 certification process. FIPS certification or compliance is often required for companies with federal government agencies or providing products/services. NOTE: Although FIPS 140-3 supersedes 140-2, modules validated under the latter remain certified until sunset/expiration dates.

Status Options

Validated: “Cryptographic modules that have been tested and validated under the Cryptographic Module Validation Program as meeting requirements for FIPS 140-1, FIPS 140-2, and FIPS 140-3.”

Modules In Process:

Revoked: “The module validation is no longer valid and may not be referenced to demonstrate compliance to the 140 standards.”

Historical: “Federal Agencies should not include these in new systems but can be procured for legacy systems. This does not mean that the overall FIPS-140 certificates for these modules have been revoked, rather it indicates that the certificates and the documentation posted with them are either more than 5 years old, or were moved to the Historical list because of programmatic transitions.”

Status by Product

Hardware	Software	Status	Date
Next-Generation Firewall NSa4700	7.0.1	Validated	03/31/2025
Next-Generation Firewall NSa5700	7.0.1	Validated	03/31/2025
Next-Generation Firewall NSa6700	7.0.1	Validated	03/31/2025
Next-Generation Firewall NSsp 10700	7.0.1	Validated	03/31/2025
Next-Generation Firewall NSsp 11700	7.0.1	Validated	03/31/2025
Next-Generation Firewall NSsp 13700	7.0.1	Validated	03/31/2025

Useful Links

Governing Body - NIST: https://csrc.nist.gov/projects/cryptographic-module-validation-program/

Validated FIPS 140-3 SonicWall Modules: https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/sonicwall