Forcepoint Network Security Certifications
A commitment to quality and the most exacting standards
All Forcepoint Network Security Platform appliances are powered by a unified core and offer consistent capabilities and management across all platforms. They are rigorously tested and have received the following certifications:
ANSSI
Forcepoint Network Security Platform and its NGFW and IPS capabilities are in process of certifying elementary qualification in the French CSPN (first-level standard certification) from the ANSSI French Network and Information Security Agency.
Commercial Solutions for Classified (CSfC)
Forcepoint’s Next Generation Firewall Series is eligible to be used as a Traffic Filtering Firewall and as an IPsec VPN Gateway component in a CSfC solution.
Catalogue of Security Productos (CPSTIC)
Forcepoint N60, N120, N2200, N3400 and ESXi series NGFWs are included in the Catalogue of Security Productos (CPSTIC), guide CCN-STIC 105, recommended by the National Cryptologic Center in Spain. This certifies Forcepoint NGFW's capacity to manage the information security for public administrations affected by the National Security Scheme in systems of high category.
FIPS 140-3
Forcepoint has qualified for FIPS (Federal Information Processing Standard) 140-3 certifications, validating that it meets specific security requirements of the U.S. and Canadian governments for the following cryptographic modules:
Section 508 Accessibility
Forcepoint Network Security Platform (NGFW) meets Section 508 Voluntary Product Accessibility Template criteria for VPN and IPS technologies. Forcepoint Security Management Center (SMC) provides centralized management of all NGFW devices, including installation, configuration and ongoing operations.
Common Criteria
Forcepoint Network Security Platform (Forcepoint NGFW) has achieved Common Criteria certification under the National Information Assurance Partnership (NIAP) Common Criteria Evaluation and Validation Scheme (CCEVS) multiple times. Currently Forcepoint Network Security Platform 7.3 is in evaluation with the Collaborative Protection Profile for Network Devices, Stateful Traffic Filter Firewalls and Virtual Private Network (VPN) Gateways.
DISA Risk Management Executive Vendor STIG program
The DoDIN APL program was officially sunset on 30 September 2025, with all currently scheduled APL testing concluding by 31 December 2025. Moving forward, cybersecurity requirements will transition to the DISA RME Vendor STIG program. Forcepoint is in process with DISA RME Vendor STIG program.
RME is essentially the DISA office that reviews Vendor STIG, validates, and officially publishes them. It's the gating authority that signs off on whether your product STIG meets DoD standards before it becomes a named, publicly listed STIG on the DoD Cyber Exchange.
