Institute of

Engineering
&Technology

Approved by AICTE & Permanently Affiliated to JNTUGV

(An Autonomous Institution)

INTERNSHIP RECORD
III B.TECH – I SEM – R20 REGULATION

DEPARTMENT OF COMPUTER SCIENCE & SYSTEMS ENGINEERING

ACADEMIC YEAR 2024-2025

Name: ___________________________________________

Roll No:__________________________________________
Branch:__Computer Science and Systems Engineering____
 LENDI
INSTITUTE OF ENGINEERING & TECHNOLOGY
(Approved by A.I.C.T.E & Affiliated to JNTUGV)
JONNADA, VIZIANAGARAM DIST. - 535 005

This is to certify that this is the bonafide record of the work done by

Mr. / Ms. ………………………………… bearing Regd. No …………...……...

in the Internship of III Year I Semester of B.Tech Course in Computer Science &

Systems Engineering Branch during the Academic Year 2024 – 2025.

LAB-IN-CHARGE HEAD OF THE DEPARTMENT

INTERNAL EXAMINER EXTERNAL EXAMINER

 Institute of
Engineering
&Technology

Approved by AICTE & Permanently Affiliated to JNTUGV

(An Autonomous Institution)

INSTITUTE VISION

 Producing globally competent and quality technocrats with human values for the holistic needs of
industry and society.

INSTITUTE MISSION

 Creating an outstanding infrastructure and platform for enhancement of skills, knowledge and
behaviour of students towards employment and higher studies.

 Providing a healthy environment for research, development and entrepreneurship, to meet the
expectations of industry and society.
 Transforming the graduates to contribute to the socio-economic development and welfare of the
society through value based education.

DEPARTMENT VISION

 To be a Centre of Excellence to impart the High Quality Education with productive Research and
Consultancy in the field of Computer Science and Systems Engineering to globally competent ,highly
competitive Professional with Ethical and Human values to serve the society.

DEPARTMENT MISSION

 To impart high quality education with strong foundation of Computer Science and Systems
Engineering principles that enables them to meet the challenges in profession/ career.
 To nurture research activities to get patens amongst faculty and students by providing necessary
facilities and environment.
 To train the students into effective intrapersonal and communication skills and to develop team
spirit, leadership capabilities, integrity and social responsibility with professional ethics and human
values.
 To promote internships to students and consultancy works among faculty by enhancing Industry-
Institute Interaction.
 Institute of
Engineering
&Technology
Approved by AICTE & Permanently Affiliated to JNTUGV
(An Autonomous Institution)

PROGRAM SPECIFIC OUTCOMES (PSOs)

PSO 1 : Ability to grasp advanced programming techniques to solve contemporary issues.
PSO 2 : Have knowledge and expertise to analyze data and networks using latest tools and technologies.
PSO 3 : Qualify in national and international competitive examinations for successful higher studies and
employment.

PROGRAM EDUCATIONAL OBJECTIVES (PEOs)

PEO 1 : Graduates will have strong knowledge and skills to comprehend latest tools and techniques of
Computer Engineering so that they can analyze, design and create computing products and solutions
for real life problems.

PEO 2 : Graduates shall have multidisciplinary approach, professional attitude and ethics, communication and
teamwork skills, and an ability to relate and solve social issues through their Employment, Higher
Studies and Research.

PEO 3: Graduates will engage in life-long learning and professional development to adapt to rapidly changing
technology.

Page 4 of 23
 Institute of
Engineering
&Technology
Approved by AICTE & Permanently Affiliated to JNTUGV
(An Autonomous Institution)

PROGRAM OUTCOMES (POs)

PO 1 : Engineering Knowledge: Apply the knowledge of mathematics, science, engineering fundamentals,
and an engineering specialization to the solution of complex engineering problems.

PO 2 : Problem Analysis: Identify, formulate, review research literature, and analyze complex engineering
problems reaching substantiated conclusions using first principles of mathematics, natural sciences,
and engineering sciences.

PO 3 : Design/development of Solutions: Design solutions for complex engineering problems and design
system components or processes that meet the specified needs with appropriate consideration for the
public health and safety, and the cultural, societal, and environmental considerations.

PO 4 : Conduct Investigations of Complex Problems: Use research-based knowledge and research methods
including design of experiments, analysis and interpretation of data, and synthesis of the information to
provide valid conclusions.

PO 5 : Modern Tool Usage: Create, select, and apply appropriate techniques, resources, and modern
engineering and IT tools including prediction and modelling to complex engineering activities with an
understanding of the limitations.

PO 6 : The Engineer and Society: Apply reasoning informed by the contextual knowledge to assess societal,
health, safety, legal and cultural issues and the consequent responsibilities relevant to the professional
engineering practice.

PO 7 : Environment and Sustainability: Understand the impact of the professional engineering solutions in
societal and environmental contexts, and demonstrate the knowledge of, and need for sustainable
development.

PO 8 : Ethics: Apply ethical principles and commit to professional ethics and responsibilities and norms of
the engineering practice.

PO 9 : Individual and Team Work: Function effectively as an individual, and as a member or leader in
diverse teams, and in multidisciplinary settings.

PO 10 : Communication: Communicate effectively on complex engineering activities with the engineering

community and with society at large, such as, being able to comprehend and write effective reports and
design documentation, make effective presentations, and give and receive clear instructions.

PO 11 : Project Management and Finance: Demonstrate knowledge and understanding of the engineering
and management principles and apply these to one’s own work, as a member and leader in a team, to
manage projects and in multidisciplinary environments.

PO 12 : Life-Long Learning: Recognize the need for, and have the preparation and ability to engage in
independent and life-long learning in the broadest context of technological change.

Page 5 of 23
 INDEX

S.No Topic Name Sign

Introduction to the Threat Landscape

1
Introduction to Cybersecurity, The Threat Landscape, Social
Engineering, Malware

Fortinet Certified Fundamentals Cybersecurity

Firewalls, Network Access Control, Sandbox, WAF(Web

Application Firewalls), Secure Email Gateway, Content Filters, Wi-
2 Fi, Endpoint Hardening Techniques, Endpoint Monitoring,
SOAR(Security Orchestration Automation and Response) , SIEM
( Security Information and Event Management ), SD-WAN
( Software-Defined Wide Area Network),ZTNA( Zero Trust
Network Access ), Cloud Security, SASE ( Secure Access Service
Edge)

FCF - Technical Introduction to Cybersecurity

3 Cryptography and the Public Key Infrastructure, Secure Network,

Authentication and Access Control, Secure Remote Access,
Endpoint Security, Secure Data and Virtualization

FCA - FortiGate 7.4 Operator

Configuring Interfaces and Routing, Firewall Policies,

4 Authenticating Network Users, Inspect SSL Traffic, Blocking
Malware, Control Web Access Using Web Filtering, Configuring the
FortiGate Intrusion Prevention System(IPS), Controlling
Applications Access, Creating IPSecs Virtual Private Networks,
Configuring FortiGate SSL VPN, FortiGate System Maintenance
and Monitoring, Configuring the Fortinet Security Fabric

Page 6 of 23
 Introduction to the Threat Landscape

1. Introduction to Cybersecurity

Cybersecurity involves a comprehensive approach to safeguarding digital systems, networks, and

data from unauthorized access or malicious actions. It focuses on protecting valuable information
from theft, corruption, or inaccessibility caused by cyberattacks. The digitalization of industries
and the reliance on internet-connected systems have amplified the importance of robust
cybersecurity measures. It addresses threats from both external sources, such as hackers and
malware, and internal vulnerabilities, such as human error and system misconfigurations. The
ultimate goal of cybersecurity is to ensure that the organization’s assets remain secure while
enabling the efficient operation of its digital systems.

Advantages

 Protects sensitive data from breaches, minimizing financial and reputational losses.
 Enhances customer trust by demonstrating a commitment to security.
 Ensures compliance with regulations like GDPR, HIPAA, or CCPA.

Configurations

 Implement firewalls and intrusion detection/prevention systems (IDS/IPS) to monitor and

block malicious traffic.
 Use role-based access control (RBAC) to restrict access to sensitive resources.
 Enable automated patch management to address vulnerabilities proactively.

Page 7 of 23
2. Importance of Cybersecurity

The growing reliance on digital platforms across sectors like healthcare, finance, and education
has made cybersecurity critical to protect sensitive information. Cyberattacks can result in
financial losses, reputational damage, and even threats to public safety. For instance, breaches in
the healthcare sector can expose personal health records, while attacks on financial systems can
lead to identity theft and fraud. Moreover, cybersecurity plays a vital role in protecting critical
infrastructure, such as power grids and transportation systems, from potential sabotage. Its
importance extends beyond businesses to individuals, where personal data security ensures
privacy and safeguards against identity theft. In today’s interconnected world, cybersecurity is a
fundamental requirement for the smooth functioning of both personal and organizational
activities.

Advantages

 Safeguards critical infrastructure, including energy grids and transportation systems.

 Reduces downtime caused by cyber incidents, ensuring business continuity.
 Provides a competitive edge by leveraging secure IT operations.

Configurations

 Conduct regular security audits to identify and rectify potential weaknesses.

 Use encryption protocols like TLS/SSL to secure data during transmission.
 Integrate endpoint detection and response (EDR) solutions to monitor devices.

Page 8 of 23
3. The CIA Triad: Confidentiality, Integrity, Availability

The CIA triad forms the backbone of cybersecurity principles. Confidentiality ensures that
sensitive information is accessed only by authorized users. This is achieved through encryption,
access controls, and secure authentication methods. Integrity focuses on maintaining the
accuracy and consistency of data. Measures like hashing algorithms and digital signatures help
detect and prevent unauthorized modifications. Availability guarantees that systems and
information are accessible when needed. This involves implementing redundancy mechanisms,
failover systems, and effective disaster recovery plans. Together, these principles ensure a
balanced approach to securing information systems against a wide array of cyber threats.

Advantages

 Confidentiality reduces risks of insider threats by restricting unnecessary access.

 Integrity ensures reliable decision-making based on accurate data.
 Availability improves operational efficiency and user satisfaction.

Configurations

 Implement multi-factor authentication (MFA) to strengthen access control.

 Use hash functions like SHA-256 to ensure data integrity.
 Deploy distributed denial-of-service (DDoS) protection to maintain availability.

Page 9 of 23
4. Cybersecurity Layers and Domains

Cybersecurity employs a layered defense strategy to address risks at various levels of an

organization’s digital environment.

 Network Security involves protecting data in transit using technologies like firewalls,
intrusion prevention systems, and virtual private networks (VPNs).
 Endpoint Security focuses on securing individual devices with tools like antivirus
software, endpoint detection and response (EDR) solutions, and regular patch updates.
 Application Security ensures that software applications are free from vulnerabilities
through secure development practices, penetration testing, and the use of web application
firewalls (WAFs).
 Cloud Security addresses the challenges posed by cloud computing, such as securing
workloads, access controls, and encryption of data stored in the cloud.

Advantages

 A layered defense strategy ensures that a breach at one layer doesn’t compromise the
entire system.
 Specific layers, like endpoint security, mitigate threats from insider vulnerabilities.
 Cloud security supports seamless integration of hybrid and multi-cloud environments.

Configurations

 Enable Zero Trust architecture to verify users and devices continuously.

 Apply software-defined networking (SDN) to enhance network segmentation.
 Use secure coding practices and runtime application self-protection (RASP) for
application security.

Page 10 of 23
Evaluation of the Fortinet Security Fabric

The Fortinet Security Fabric is an integrated cybersecurity platform that provides

comprehensive, automated, and adaptive protection across an organization’s entire digital
infrastructure. It connects Fortinet’s portfolio of security solutions with third-party products to
deliver a unified approach to threat detection and response. Below is a detailed evaluation of its
key components, advantages, limitations, and configurations:

1. FortiGate Next-Generation Firewalls (NGFWs): Provides advanced threat protection,

deep packet inspection, and secure web filtering. Supports secure SD-WAN, allowing
cost-effective and high-performance connectivity.
2. FortiSandbox: An advanced threat detection system that isolates and inspects suspicious
files in a sandbox environment.
3. FortiEDR (Endpoint Detection and Response):Protects endpoints from malware and
ransomware by proactively detecting threats in real time.
4. FortiMail:Focuses on email security by filtering spam, phishing attempts, and malicious
attachments.
5. FortiAnalyzer and FortiManager:Provides centralized logging, reporting, and
management for security operations.
6. FortiGuard Labs:A global threat intelligence service delivering real-time updates and
analytics to enhance defenses.
7. FortiToken and FortiAuthenticator:Ensure secure access through multi-factor
authentication (MFA) and identity management.
8. FortiCloud:Simplifies deployment and monitoring of Fortinet devices across cloud
environments.

Advantages

 Integrated Security Approach: The seamless communication between devices reduces

gaps in security coverage and response times.
 Automated Threat Detection: AI-driven insights from FortiGuard Labs enable
proactive defense against emerging threats.
 Scalability: Suitable for enterprises of all sizes, with solutions for on-premise, hybrid,
and multi-cloud deployments.
 Cost-Effective: Consolidates multiple security functions into a single platform, reducing
complexity and costs.

Page 11 of 23
  Compliance Support: Helps organizations meet regulatory standards like GDPR,
HIPAA, and PCI DSS.
 High Performance: Optimized for high-speed environments, supporting large-scale data
traffic without compromising security.

Configurations

1. Firewall Policies:
o Configure firewalls to enforce least-privilege access and inspect encrypted traffic.
o Use preconfigured templates for consistent security policies across locations.

2. Integration with Third-Party Tools:

o Leverage APIs to integrate with non-Fortinet tools for extended functionality.
o Examples include SIEM solutions, vulnerability scanners, and endpoint solutions.

3. Automated Responses:
o Use playbooks in the FortiAnalyzer or FortiSOAR platforms for automated
incident response.
o Configure alerts for suspicious activities to ensure rapid remediation.

4. Secure SD-WAN:
o Implement Fortinet's SD-WAN for secure and optimized connections to branch
offices and cloud applications.

5. Advanced Threat Protection:

o Enable FortiSandbox in the network to detect and quarantine zero-day threats.
o Use FortiEDR policies to block fileless malware and lateral movement in
networks.

6. Identity and Access Management:

o Configure FortiToken for MFA and integrate FortiAuthenticator for centralized
identity management.

Limitations

1. Complexity for Small Teams:

o The comprehensive feature set may overwhelm smaller IT teams without
adequate expertise.

Page 12 of 23
2. Third-Party Integration Challenges:
o While APIs are provided, some third-party integrations may require
customization.

3. Initial Deployment Costs:

o While cost-effective in the long run, the initial investment may be significant for
smaller organizations.

Page 13 of 23
 Fortinet Certified Fundamentals Cybersecurity

Fortinet Firewalls: A Deep Dive

Fortinet's firewalls, primarily under the FortiGate product line, are designed to address the ever-
evolving cybersecurity challenges faced by modern organizations. These firewalls are not merely
protective tools but act as a comprehensive security solution, integrating multiple capabilities to
defend against sophisticated cyber threats while optimizing network performance.

Advanced Architecture of FortiGate Firewalls

Fortinet firewalls utilize a unique architecture powered by dedicated hardware and software:

 Security Processing Units (SPUs): Fortinet’s proprietary SPUs are hardware

accelerators designed to handle complex security tasks like deep packet inspection (DPI)
and secure socket layer (SSL) decryption at high speeds.
o CPUs (Content Processors): Dedicated to offloading intensive content scanning
tasks, ensuring minimal latency.
o NPUs (Network Processors): Focus on accelerating network traffic flows for
faster data transfer.

 FortiOS Operating System: The FortiOS is the backbone of Fortinet firewalls,

providing a unified interface for managing security policies and configurations.
o Includes a robust policy engine for granular access control.
o Features integrated security functionalities, including intrusion prevention, anti-
malware, and application control.

 FortiASIC Chips: These specialized processors are integrated into FortiGate devices to
handle encryption/decryption tasks and packet processing efficiently.

Page 14 of 23
Core Functionalities of Fortinet Firewalls

 Unified Threat Management (UTM): Fortinet firewalls combine traditional and next-
generation features into a single platform. UTM functionality includes antivirus, intrusion
prevention systems (IPS), web filtering, and spam filtering.
 Deep Packet Inspection (DPI): Inspects both header and payload of data packets to
detect threats that bypass conventional signature-based methods.
 Encrypted Traffic Scanning: With SSL/TLS traffic becoming the norm, FortiGate
firewalls can decrypt, inspect, and re-encrypt data to identify threats hidden in encrypted
streams.
 Zero Trust Network Access (ZTNA): Fortinet integrates ZTNA capabilities into its
firewalls, enforcing strict access control policies and ensuring users and devices are
continuously verified before accessing resources.
 Cloud-Ready Security: Fortinet firewalls support hybrid cloud environments, ensuring
secure connectivity between on-premises and cloud-based infrastructure.

Security Services and FortiGuard Integration

The integration of FortiGuard Labs’ threat intelligence significantly enhances the effectiveness
of Fortinet firewalls.

 Real-Time Threat Intelligence: FortiGuard Labs collects and analyzes data globally,
providing up-to-date information on malware, vulnerabilities, and exploits.
 Web Filtering: Blocks malicious or inappropriate websites using a constantly updated
URL database.
 Advanced Malware Protection: Detects and mitigates fileless malware, ransomware,
and advanced persistent threats (APTs).
 Botnet Detection: Monitors and blocks communication with known command-and-
control servers.

Page 15 of 23
Comprehensive Networking Features

Fortinet firewalls extend their functionality beyond traditional security, offering robust
networking capabilities:

 Software-Defined Wide Area Network (SD-WAN): Optimizes connectivity by

dynamically selecting the best path for traffic between branches, data centers, and cloud
services. Ensures secure and high-performance WAN connections.
 Virtual Private Network (VPN): Supports site-to-site and remote-access VPNs,
ensuring encrypted communication between endpoints.
 Routing and Switching: Provides advanced routing protocols (BGP, OSPF) and Layer
2/3 switching features to simplify network architecture.

Page 16 of 23
Hybrid Mesh Firewall (HMF)

The Hybrid Mesh Firewall (HMF) represents a new era of security solutions designed to
protect complex and distributed IT environments. As organizations increasingly adopt hybrid
and multi-cloud strategies, the need for unified security across various network layers has
become paramount. Fortinet’s Hybrid Mesh Firewall combines the strengths of traditional
firewalls, next-generation firewalls (NGFW), and cloud-based firewalls into a single, cohesive
architecture.

The HMF operates by interconnecting multiple firewalls across diverse environments, creating a
"mesh" of unified protection. This approach ensures consistent enforcement of security policies,
end-to-end visibility, and protection against evolving threats. It is particularly suited for hybrid-
cloud deployments, edge computing, and remote locations where traditional perimeter security
models fail to provide adequate coverage.

Fortinet’s HMF is built on its robust Security Fabric, enabling seamless integration with
FortiGate firewalls and other Fortinet solutions. Features like centralized management, advanced
threat detection, and Zero Trust Network Access (ZTNA) provide organizations with a scalable,
efficient, and comprehensive security framework. The inclusion of AI-driven analytics enhances
the detection and mitigation of advanced threats, ensuring real-time protection.

By providing flexibility, high performance, and simplified security operations, Fortinet’s Hybrid
Mesh Firewall is a forward-looking solution that meets the demands of today’s distributed IT
infrastructures. It is not only adaptable to current technological trends like cloud computing and
IoT but also ensures future-proof security for emerging technologies like 5G and edge
computing.

Page 17 of 23
 FCF - Technical Introduction to Cybersecurity
Secure Network, Authentication and Access Control, Secure Remote Access, Endpoint Security, Secure Data
and Virtualization

Cryptography and the Public Key Infrastructure

Cryptography is the science of securing information by converting it into an unreadable format,

ensuring only authorized parties can access it. It is a cornerstone of modern cybersecurity,
addressing critical requirements such as confidentiality, integrity, authentication, and non-
repudiation.

Cryptography can be classified into three main types. Symmetric key cryptography uses the
same key for both encryption and decryption, making it efficient but reliant on secure key
exchange. Asymmetric key cryptography, on the other hand, uses a pair of keys—a public key
for encryption and a private key for decryption—ideal for secure communication over public
channels. Hash functions are another vital component, generating fixed-size values from data to
verify its integrity without encryption.

Public Key Infrastructure (PKI) is a framework that supports secure communication and identity
verification using cryptographic methods. It relies on asymmetric cryptography, combining
public and private keys to establish trust and protect data. PKI’s main components include the
Certificate Authority (CA), which issues and manages digital certificates; the Registration
Authority (RA), which verifies the identity of certificate holders; and digital certificates that bind
an entity’s identity to its public key. Other components, like the Certificate Revocation List

Page 18 of 23
(CRL) and Hardware Security Modules (HSM), ensure the proper management and security of
certificates and cryptographic keys.

PKI provides critical functionalities such as authentication, encryption, integrity verification, and
digital signatures. It is widely applied in secure web browsing (HTTPS), email security, VPNs,
IoT communication, and blockchain systems. By encrypting data, verifying identities, and
enabling secure transactions, cryptography and PKI form the backbone of secure digital
ecosystems. They are indispensable for safeguarding sensitive information, ensuring trust, and
meeting regulatory requirements in a highly connected world.

Cryptography and Public Key Infrastructure (PKI) in Fortinet

Fortinet leverages advanced cryptographic techniques and PKI frameworks to deliver robust,
scalable, and enterprise-ready security solutions. These technologies are deeply integrated into
its Fortinet Security Fabric, which unifies security across on-premises, cloud, and hybrid
environments.

Fortinet’s Role in Cryptography: Fortinet employs cryptography to secure data, ensure

privacy, and protect communications. Its products, like FortiGate firewalls, FortiAuthenticator,
and FortiToken, implement state-of-the-art cryptographic algorithms for various applications:

1. Data Encryption: Fortinet solutions use encryption standards such as AES (Advanced
Encryption Standard) to safeguard data during transmission and at rest. This is

Page 19 of 23
 particularly crucial for securing sensitive information in SD-WAN, VPNs, and cloud
environments.
2. Digital Signatures and Certificates: Fortinet appliances rely on PKI to verify the
authenticity of entities and secure communication channels. Digital signatures validate
software updates, firmware, and certificates issued for devices and users.
3. Key Management: Fortinet uses secure mechanisms to generate, distribute, and store
cryptographic keys. Its solutions, like FortiAuthenticator, manage certificates and
integrate seamlessly with external Certificate Authorities.

Public Key Infrastructure in Fortinet: Fortinet utilizes PKI as a foundational component for
trusted identity and secure communications across its ecosystem:

1. Certificate-Based Authentication: Fortinet integrates certificate-based authentication in

its FortiGate firewalls and VPNs. This ensures that only authorized users and devices can
access sensitive resources.
2. FortiAuthenticator: This tool provides PKI support by managing digital certificates,
enabling certificate enrollment, and supporting secure access across diverse
environments. FortiAuthenticator plays a key role in integrating PKI with Fortinet’s
broader security fabric.
3. SSL Inspection: FortiGate firewalls use cryptographic methods to inspect Secure
Sockets Layer (SSL) and Transport Layer Security (TLS) encrypted traffic. By
decrypting and re-encrypting traffic using certificates, it ensures malicious content is
detected without compromising privacy.
4. Two-Factor Authentication (2FA): FortiToken, integrated with FortiGate and
FortiAuthenticator, utilizes PKI to deliver secure 2FA solutions. It adds an additional
layer of protection by combining passwords with cryptographic tokens.
5. Secure IoT Communication: In IoT environments, Fortinet’s PKI solutions enable
secure authentication and encrypted communication between devices, preventing
unauthorized access and data breaches.

Advanced Capabilities in Cryptography: Fortinet continuously enhances its cryptographic

capabilities to address emerging threats and evolving standards:

1. Quantum-Resistant Cryptography: As quantum computing advances, Fortinet explores

post-quantum cryptographic algorithms to future-proof its security solutions.

Page 20 of 23
 2. High Performance Encryption: Fortinet’s proprietary Security Processing Units
(SPUs) accelerate cryptographic operations, delivering high throughput and low latency
without compromising security.

Applications of Fortinet’s Cryptography and PKI Solutions

 Secure Web Filtering and Proxying: Inspect and filter encrypted traffic to protect
against web-based threats.
 Cloud Security: Integrate with cloud-native PKI services to secure workloads in
platforms like AWS, Azure, and Google Cloud.
 Zero Trust Network Access (ZTNA): Enforce strict access controls using PKI for
identity verification and secure session establishment.

Advantages of Fortinet’s Cryptographic and PKI Implementations

 Comprehensive integration into the Fortinet Security Fabric for unified security.
 Seamless management of certificates and keys with FortiAuthenticator.
 Enhanced visibility and protection of encrypted traffic using SSL/TLS inspection.
 Scalability to accommodate large enterprise networks with distributed operations.

Secure Network in Fortinet

Fortinet’s approach to secure networking revolves around its Fortinet Security Fabric, a unified
platform that integrates advanced security solutions to protect modern, distributed networks. By
combining network security, endpoint protection, cloud security, and access management,
Fortinet ensures seamless and comprehensive protection across diverse environments. The
cornerstone of Fortinet's secure networking is its FortiGate Next-Generation Firewalls
Page 21 of 23
(NGFWs), which deliver robust features such as deep packet inspection, intrusion prevention,
and SSL/TLS traffic analysis. These firewalls work in tandem with technologies like
FortiAnalyzer for centralized visibility and FortiManager for policy automation, ensuring
consistent security enforcement. Fortinet also leverages Zero Trust Network Access (ZTNA) to
verify every user and device accessing the network, reducing attack surfaces. Additionally,
Fortinet’s Secure SD-WAN combines secure networking with optimized application
performance, particularly for hybrid and multi-cloud environments. With AI-driven threat
intelligence from FortiGuard Labs, Fortinet provides proactive protection against advanced
threats, ensuring that networks remain resilient, adaptable, and secure in the face of evolving
cyber challenges. This comprehensive, scalable approach makes Fortinet a trusted leader in
secure networking.

Fortinet secures networks through its Fortinet Security Fabric, an integrated security
architecture that unifies protection across physical, virtual, and cloud environments. Central to
this framework is the FortiGate Next-Generation Firewalls (NGFWs), offering features like
intrusion prevention, application control, SSL/TLS decryption, and deep packet inspection.
These capabilities ensure that all network traffic, including encrypted communications, is
monitored and secured without compromising performance.

Fortinet’s Secure SD-WAN enhances secure networking by combining dynamic routing with
robust security, ensuring optimal application performance while safeguarding data. The

Page 22 of 23
incorporation of Zero Trust Network Access (ZTNA) further fortifies network security by
verifying every user and device before granting access, aligning with modern security demands.

To manage and monitor large-scale networks, Fortinet provides centralized tools such as
FortiManager and FortiAnalyzer, enabling policy enforcement, real-time analytics, and threat
response from a single interface. Fortinet’s FortiGuard Labs powers the security fabric with
AI-driven threat intelligence, providing proactive defense against emerging threats.

By integrating these solutions with endpoint security, cloud protection, and secure access
controls, Fortinet ensures a layered and adaptive defense, making it a leader in securing networks
across industries. This holistic approach is designed to address the challenges of evolving cyber
threats while delivering scalable and high-performance security for modern digital
infrastructures.

FCA - FortiGate 7.4 Operator

Page 23 of 23