Fortinet Partners With Leading Vendors to Deliver Federally Compliant Network Security Solutions to U.S. Government Agencies

Market Wire, June, 2008

Fortinet® -- the pioneer and leading provider of unified threat management (UTM) solutions -- today announced it is working with ACR 2 Solutions and Government Technology Solutions to provide government customers with an integrated and automated network security solution that contains functionality compliant with the National Institute of Science and Technology's Security Content Automation Program (NIST SCAP). Through the partnership, Fortinet becomes the first network security vendor to offer a solution that meets the requirements of the Federal Desktop Configuration Control (FDCC) guidelines. The FDCC mandates U.S. federal agencies to standardize the configuration of their Windows XP and Vista computing systems in an effort to strengthen federal IT security by reducing opportunities for hackers to access and exploit government computer systems.

Fortinet's relationship with ACR 2 Solutions and Government Technology Solutions allows it to create a unique bundle of the Fortinet UTM appliance with an automated risk reporting software and the government channel through which to sell the solution:

--  ACR 2 offers an automated security risk assessment system which meets
    federal compliance for monitoring and reporting. Through its collaboration
    with Fortinet and Government Technology Solutions, ACR 2 has developed a
    new product -- Risk Reporter for Fortinet -- which meets the requirements
    of the FDCC and SCAP. The integrated bundle moves network security from
    reporting on vulnerabilities to reporting risks and meets the requirements
    of NIST 800-39 for "near real-time security status information." Real-time
    data from the Fortinet's FortiGate(TM) network security appliance is
    combined with network scan data to feed an automated risk assessment
    engine.
--  Government Technology Solutions is a leading network security
    solutions and technology supplier to federal, state and local governments.
    With an 11-year history supplying IT solutions to the federal sector,
    Government Technology Solutions will provide federal agencies a NIST SCAP-
    certified network security platform by bundling Fortinet's UTM products
    with ARC 2's Risk Reporter, along with other third-party SCAP-compliant
    software, via its General Services Administration contracts.
    

The Federal Information Security Management Act (FISMA) is focused on the automation of information security under NIST SCAP. Beginning in 2008, the U.S. government's Office of Management and Budget will not approve computer purchases that do not meet SCAP guidelines, thus cooperation by UTM vendors with vulnerability scanners and risk assessment consultants is essential in helping government agencies to stay within federal spending guidelines.

"Fortinet is very pleased to be a key member of this security solution, designed to help protect and defend federal and SLED* computing environments. With the proven capabilities of the FortiGate multi-threat appliances and the enterprise-class NIST SCAP certified risk reporting of the new bundle, Fortinet and our partners have brought a world-class solution to the market," said Jeff Lake, vice president of Fortinet federal operations.

"We see the new federal standards as the natural growth of the U.S. government's efforts to standardize and improve its security profile," said Robert Deitz II, chief executive officer of Government Technology Solutions. "Being able to offer a fully bundled, out-of-the-box solution that allows our customers to meet their required FISMA reporting is a great benefit. And in keeping with our 11-year history of meeting all current government requirements -- this solution is unique in the market with a immediate ROI as it takes software and technology to replace what before was being done by hand and spreadsheets."

Robert Peterson, chief technology officer at ACR 2 Solutions states, "We are pleased to be able to create a unique product, which runs on the Fortinet UTM platforms and is tailored to the security needs and guidelines for federal government agencies. The ability to provide continuous and real-time reporting and risk assessment is crucial to protecting sensitive government data and requires a greater degree of scrutiny, especially in this time of increased cyber criminal activity."

Additional information on Risk Reporter can be obtained at info@gvTechSolutions.com .

* SLED = state, local, education

About ACR 2 Solutions ( www.acr2solutions.com )

ACR 2 Solution specializes in the growing information security and compliance market, focusing on regulatory compliance with federal laws including GLBA, HIPAA, FISMA and the payment card industry requirements of PCI DSS.

About Fortinet ( www.fortinet.com )

Fortinet is the pioneer and leading provider of ASIC-accelerated unified threat management, or UTM, security systems, which are used by enterprises and service providers to increase their security while reducing total operating costs. Fortinet solutions were built from the ground up to integrate multiple levels of security protection -- including firewall, antivirus, intrusion prevention, VPN, spyware prevention and anti-spam -- designed to help customers protect against network and content level threats. Leveraging a custom ASIC and unified interface, Fortinet solutions offer advanced security functionality that scales from remote office to chassis-based solutions with integrated management and reporting. Fortinet solutions have won multiple awards around the world and are the only security products that are certified in seven programs by ICSA Labs (firewall, antivirus, IPSec, SSL, network IPS, anti-Spyware and anti-spam). Fortinet is privately held and based in Sunnyvale, California.